Loading...

XML

Word

Printable

Details

Type: Feature Request
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: API, Cluster Infrastructure
Labels:
- sb_candidate

Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Hierarchy Progress:
0
Hierarchy Progress Bar:

0% 0%

SFDC Cases Counter:
SFDC Cases Links:

Description

Hi Team,

I realised that the ARO Service Principal is such a critical service account for customers' ARO Clusters. But we found many cases that its contributor role to the RG has been removed by customers (maybe their security team or Azure admin team which may be different from ARO cluster owners).

We could have incidents (wildcard certs expiration) due to the ARO SP could not renew them automatically, so I am wondering if we can add some monitoring to ensure the ARO SP is functioning as expected.

If not, we may send a service log to the cluster admin to reach out to their Azure admin team.

Kind regards,

Tao

Attachments

Activity

People

Assignee:: Jerome Boutaud

Reporter:: Tao Xu (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2022/08/17 4:20 AM

Updated:: 2023/02/10 3:36 PM