Downstream cluster provisioning issues using docker instalation

Herman_Milton_Maleia · March 29, 2023, 1:28pm

Hi Team,

I´m facing some issues when i try to perform provisioning of downstream cluster.
Can you please help with this issue.

Failed to apply the ServiceAccount needed for job execution: Post “https://10.2.28.126:6443/apis/rbac.authorization.k8s.io/v1/clusterrolebindings?timeout=30s”: Forbidden

From provisioning logs

[INFO ] [authz] Creating rke-job-deployer ServiceAccount
3:57:04 pm [ERROR] Failed to apply the ServiceAccount needed for job execution: Post “https://10.2.28.126:6443/apis/rbac.authorization.k8s.io/v1/clusterrolebindings?timeout=30s”: Forbidden

Herman_Milton_Maleia · March 30, 2023, 2:12pm

Solved.

If you are using rancher behind a corporate proxy just use no proxy for control plane in environment variables.

docker run -d --restart=unless-stopped \
  -p 80:80 -p 443:443 \
  -e HTTP_PROXY="" \
  -e HTTPS_PROXY="" \
  -e NO_PROXY="127.0.0.1,0.0.0.0,10.2.XXX.XXX,localhost,172.17.0.1,IP:6443" \
  --privileged \
  rancher/rancher:latest

Topic		Replies	Views
Node's service-sidekick keep in create Rancher 2.x	2	1399	August 14, 2019
RKE network error on creating a serviceaccount Rancher 2.x	1	1567	July 18, 2022
Issues provisioning downstream cluster Rancher 2.x	0	297	March 28, 2023
Issue deploying kube via RKE Rancher 2.x	1	2433	June 12, 2018
Unable to bootstrap user cluster with ranger-agent Rancher 2.x	0	2901	September 24, 2021

Downstream cluster provisioning issues using docker instalation

Related Topics