Downstream cluster provisioning issues using docker instalation

Hi Team,

I´m facing some issues when i try to perform provisioning of downstream cluster.
Can you please help with this issue.

Failed to apply the ServiceAccount needed for job execution: Post “https://10.2.28.126:6443/apis/rbac.authorization.k8s.io/v1/clusterrolebindings?timeout=30s”: Forbidden

From provisioning logs

[INFO ] [authz] Creating rke-job-deployer ServiceAccount
3:57:04 pm [ERROR] Failed to apply the ServiceAccount needed for job execution: Post “https://10.2.28.126:6443/apis/rbac.authorization.k8s.io/v1/clusterrolebindings?timeout=30s”: Forbidden

Solved.

If you are using rancher behind a corporate proxy just use no proxy for control plane in environment variables.

docker run -d --restart=unless-stopped \
  -p 80:80 -p 443:443 \
  -e HTTP_PROXY="" \
  -e HTTPS_PROXY="" \
  -e NO_PROXY="127.0.0.1,0.0.0.0,10.2.XXX.XXX,localhost,172.17.0.1,IP:6443" \
  --privileged \
  rancher/rancher:latest
1 Like