Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-44627

OpenShift Components on HCP Cannot Authenticate with Client Certificate

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • 4.17.z
    • HyperShift / ARO
    • None
    • Hypershift Sprint 262, Hypershift Sprint 263
    • 2
    • False
    • Hide

      None

      Show
      None
    • Release Note Not Required
    • In Progress

      Description of problem:

          OpenShift components deployed in an HCP related to managed Azure, aka ARO HCP, need to use client certificate to authenticate with Azure Cloud API. This capability is available in these components in OCP 4.18 but are needed in OCP 4.17.z for ARO HCP P2 milestone.

      Version-Release number of selected component (if applicable):

          

      How reproducible:

          N/A

      Steps to Reproduce:

          N/A
          

      Actual results:

          OpenShift components running on the HCP control plane cannot authenticate with Azure with client certificate authentication.

      Expected results:

          OpenShift components running on the HCP control plane can authenticate with Azure with client certificate authentication.

      Additional info:

          This should include the backport of upstream PRs for CSI:
           - https://github.com/kubernetes-sigs/azurefile-csi-driver/pull/2182
           - https://github.com/kubernetes-sigs/azuredisk-csi-driver/pull/2619

              rh-ee-brcox Bryan Cox
              rh-ee-brcox Bryan Cox
              He Liu He Liu
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated: