Hi,
I am trying to provision a new K8s cluster on vSphere but I always get NoPermission error even though rancher was able to create the empty vm.
I have downloaded the rancheros-vmware.iso from here (Release v1.4.3 · rancher/os · GitHub) and put it internally for performance reasons.
Rancher: v2.1.6
vSphere: 6.5
[INFO] stdout: Creating CA: management-state/node/nodes/node1/certs/ca.pem
[INFO] stdout: Creating client certificate: management-state/node/nodes/node1/certs/cert.pem
[INFO] stdout: Running pre-create checks…
[INFO] stdout: Creating machine…
[INFO] stdout: (node1) Image cache directory does not exist, creating it at management-state/node/nodes/node1/cache…
[INFO] stdout: (node1) Downloading management-state/node/nodes/node1/cache/boot2docker.iso from webhost/rancheros-vmware-v1.4.3.iso…
[INFO] stdout: (node1) 0%!.(MISSING)…10%!.(MISSING)…20%!.(MISSING)…30%!.(MISSING)…40%!.(MISSING)…50%!.(MISSING)…60%!.(MISSING)…70%!.(MISSING)…80%!.(MISSING)…90%!.(MISSING)…100%!(NOVERB)
[INFO] stdout: (node1) Generating SSH Keypair…
[INFO] stdout: (node1) Creating VM…
[INFO] stdout: (node1) Uploading Boot2docker ISO …
[INFO] stdout: (node1) adding network: VLAN-268 Virtual 2
[INFO] stdout: (node1) Reconfiguring VM
[INFO] stdout: (node1) setting guestinfo.cloud-init.data.url to webhost/cloud-config.yaml
[INFO] stdout: (node1)
[INFO] stdout: The default lines below are for a sh/bash shell, you can specify the shell you’re using, with the --shell flag.
[INFO] stdout:
[INFO] Generating and uploading node config node1
[ERROR] NodeController c-gjsql/m-2sdm8 [node-controller] failed with : Error creating machine: Error in driver during machine creation: NoPermission
these are the permissions of the account accessing vsphere:
System.Anonymous
System.View
System.Read
Global.CancelTask
Folder.Create
Folder.Delete
Folder.Rename
Folder.Move
Datastore.Browse
Datastore.DeleteFile
Datastore.FileManagement
Datastore.AllocateSpace
Datastore.Config
Datastore.UpdateVirtualMachineFiles
Datastore.UpdateVirtualMachineMetadata
Network.Assign
VirtualMachine.Inventory.Create
VirtualMachine.Inventory.CreateFromExisting
VirtualMachine.Inventory.Register
VirtualMachine.Inventory.Delete
VirtualMachine.Inventory.Unregister
VirtualMachine.Inventory.Move
VirtualMachine.Interact.PowerOn
VirtualMachine.Interact.PowerOff
VirtualMachine.Interact.Suspend
VirtualMachine.Interact.Reset
VirtualMachine.Interact.Pause
VirtualMachine.Interact.AnswerQuestion
VirtualMachine.Interact.ConsoleInteract
VirtualMachine.Interact.DeviceConnection
VirtualMachine.Interact.SetCDMedia
VirtualMachine.Interact.SetFloppyMedia
VirtualMachine.Interact.ToolsInstall
VirtualMachine.Interact.GuestControl
VirtualMachine.Interact.DefragmentAllDisks
VirtualMachine.Interact.CreateSecondary
VirtualMachine.Interact.TurnOffFaultTolerance
VirtualMachine.Interact.MakePrimary
VirtualMachine.Interact.TerminateFaultTolerantVM
VirtualMachine.Interact.DisableSecondary
VirtualMachine.Interact.EnableSecondary
VirtualMachine.Interact.Record
VirtualMachine.Interact.Replay
VirtualMachine.Interact.Backup
VirtualMachine.Interact.CreateScreenshot
VirtualMachine.Interact.PutUsbScanCodes
VirtualMachine.Interact.SESparseMaintenance
VirtualMachine.Interact.DnD
VirtualMachine.GuestOperations.Query
VirtualMachine.GuestOperations.Modify
VirtualMachine.GuestOperations.Execute
VirtualMachine.GuestOperations.QueryAliases
VirtualMachine.GuestOperations.ModifyAliases
VirtualMachine.Config.Rename
VirtualMachine.Config.Annotation
VirtualMachine.Config.AddExistingDisk
VirtualMachine.Config.AddNewDisk
VirtualMachine.Config.RemoveDisk
VirtualMachine.Config.RawDevice
VirtualMachine.Config.HostUSBDevice
VirtualMachine.Config.CPUCount
VirtualMachine.Config.Memory
VirtualMachine.Config.AddRemoveDevice
VirtualMachine.Config.EditDevice
VirtualMachine.Config.Settings
VirtualMachine.Config.Resource
VirtualMachine.Config.UpgradeVirtualHardware
VirtualMachine.Config.ResetGuestInfo
VirtualMachine.Config.ToggleForkParent
VirtualMachine.Config.AdvancedConfig
VirtualMachine.Config.DiskLease
VirtualMachine.Config.SwapPlacement
VirtualMachine.Config.DiskExtend
VirtualMachine.Config.ChangeTracking
VirtualMachine.Config.Unlock
VirtualMachine.Config.QueryUnownedFiles
VirtualMachine.Config.ReloadFromPath
VirtualMachine.Config.QueryFTCompatibility
VirtualMachine.Config.MksControl
VirtualMachine.Config.ManagedBy
VirtualMachine.State.CreateSnapshot
VirtualMachine.State.RevertToSnapshot
VirtualMachine.State.RemoveSnapshot
VirtualMachine.State.RenameSnapshot
VirtualMachine.Provisioning.Customize
VirtualMachine.Provisioning.Clone
VirtualMachine.Provisioning.PromoteDisks
VirtualMachine.Provisioning.CreateTemplateFromVM
VirtualMachine.Provisioning.DeployTemplate
VirtualMachine.Provisioning.CloneTemplate
VirtualMachine.Provisioning.MarkAsTemplate
VirtualMachine.Provisioning.MarkAsVM
VirtualMachine.Provisioning.ReadCustSpecs
VirtualMachine.Provisioning.ModifyCustSpecs
VirtualMachine.Provisioning.DiskRandomAccess
VirtualMachine.Provisioning.DiskRandomRead
VirtualMachine.Provisioning.FileRandomAccess
VirtualMachine.Provisioning.GetVmFiles
VirtualMachine.Provisioning.PutVmFiles
Resource.AssignVMToPool
Resource.HotMigrate
Resource.ColdMigrate