Uploaded image for project: 'Red Hat OpenShift Data Science'
  1. Red Hat OpenShift Data Science
  2. RHODS-5892

While RHODS deployment grafana pod creation failed in OSD 4.12

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • None
    • FUTURE_GA
    • Monitoring
    • None
    • False
    • None
    • False
    • Testable
    • No
    • No
    • No
    • Yes
    • None
    • High

      Description of problem:

      creation of Grafana pod is failing while rhods deployment,
      it looks like there are some missing permission

      Prerequisites (if any, like setup, operators/versions):

      Create ODS 4.12 Cluster

      Steps to Reproduce

      1. Install rhods Using catalog (CLI)

      Actual results:

      grafana Monitoring pod failed to create 

      Expected results:

      Reproducibility (Always/Intermittent/Only Once):

      Tested on GCP and AWS on ODS 4.12

      Build Details:

      Workaround:

      Additional info:

      5m         Warning   FailedCreate              replicaset/grafana-5578574559             (combined from similar events): Error creating: pods "grafana-5578574559-5pgrx" is forbidden: violates PodSecurity "restricted:v1.24": allowPrivilegeEscalation != false (containers "grafana", "auth-proxy" must set securityContext.allowPrivilegeEscalation=false), unrestricted capabilities (containers "grafana", "auth-proxy" must set securityContext.capabilities.drop=["ALL"]), runAsNonRoot != true (pod or containers "grafana", "auth-proxy" must set securityContext.runAsNonRoot=true), seccompProfile (pod or containers "grafana", "auth-proxy" must set securityContext.seccompProfile.type to "RuntimeDefault" or "Localhost")

              Unassigned Unassigned
              mwaykole Milind Waykole
              Jorge Garcia Oncins Jorge Garcia Oncins
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: