Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: 4.18.z, 4.19.z
Component/s: Documentation / Installer
Labels:
None

Activity Type:
Quality / Stability / Reliability
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Story Points:
2
Severity:
None
Regression:
None

Target Backport Versions:
None
Target Version:
None
Release Blocker:
None
Sprint:
Agent Sprint 273
sprint_count:
1

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

PX Impact Score:

Release Note Status:
None
Release Note Type:
None
Release Note Text:
None

Escape Reason:
None
Escape Impact:
None
Corrective Measures:
None
SDLC stage when should've been found:
None

Description of problem:

When you follow the Azure documentation section of IPI installation when using an existing VNet the permissions

Microsoft.ManagedIdentity/register/action
Microsoft.Network/virtualNetworks/checkIpAddressAvailability/read

Are missing as required from the documentation and causes the install to fail to create manifests because the api call fails to retreive the availble ip address as without the checkIpAddressAvailability/read permission the call succeed with a 200 repsonse but an empty result list of avaiable ips.

Version-Release number of selected component (if applicable):

How reproducible:

    Use a custom role for the service principal and not include the permissions and the install fails

Steps to Reproduce:

    1.
    2.
    3.

Actual results:

Install fails not able to find lb ip

Expected results:

    Installation succeeds

Additional info:

Assignee:: OCP DocsBot

Reporter:: Joshua Mathianas

Need Info From:: None

Contributors:: None

QA Contact:: Jinyun Ma

Doc Contact:: None

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2025/06/26 3:59 PM

Updated:: 2025/10/10 10:13 AM

Details

Description

Attachments

Easy Agile Planning Poker

Activity

People

Dates