-
Bug
-
Resolution: Unresolved
-
Critical
-
4.21.0, 4.22.0
-
None
-
False
-
-
None
-
Critical
-
Yes
-
None
-
Proposed
-
None
-
In Progress
-
Release Note Not Required
-
None
-
None
-
None
-
None
-
None
This is a clone of issue OCPBUGS-62870. The following is the description of the original issue:
—
Description of problem:
Installing into GCP Shared VPC with "credentialsMode: Passthrough" and using minimal permissions failed, because "failed to create bootstrap firewall rules: failed to find firewall permission compute.firewalls.create", while "skipping firewall rule creation" is expected in this case.
Version-Release number of selected component (if applicable):
4.21.0-0.nightly-multi-2025-10-08-162245
How reproducible:
Always
Steps to Reproduce:
1. "create install-config", then edit install-config.yaml to insert interested settings (see [1])
2. activate the GCP IAM service account which has minimal required permissions
3. "create cluster" (see [2])
Actual results:
ERROR failed to fetch Cluster: failed to generate asset "Cluster": failed to create cluster: failed provisioning resources after infrastructure ready: failed to add bootstrap firewall rule: failed to create bootstrap firewall rules: failed to find firewall permission compute.firewalls.create
Expected results:
The installation should succeed, along with telling "failed to find permission compute.firewalls.create, skipping firewall rule creation".
Additional info:
- clones
-
-
- Verified
-
- is blocked by
-
-
- Verified
-
- links to