The F5 IPAM Controller runs in an orchestration environment like Kubernetes to allocate IP addresses from an IPAM system to BIG-IP Virtual Servers. The purpose is to abstract complexity related to setting up BIG-IP from a networking perspective
Apache License 2.0
9
stars
16
forks
source link
Helm Installation in OpenShift 4.12 fails due to securityContext #150
Helm chart: f5-ipam-controller-0.0.4.tgz
FIC Version : 0.1.5
Description
I had to remove the securityContext section in the Deployment manifest otherwise I had the following errors:
- lastTransitionTime: "2023-11-14T10:56:03Z"
lastUpdateTime: "2023-11-14T10:56:03Z"
message: 'pods "f5-ipam-controller-5f87c554f9-" is forbidden: unable to validate
against any security context constraint: [provider "anyuid": Forbidden: not
usable by user or serviceaccount, provider restricted-v2: .spec.securityContext.fsGroup:
Invalid value: []int64{1000}: 1000 is not an allowed group, provider restricted-v2:
.containers[0].runAsUser: Invalid value: 1000: must be in the ranges: [1000760000,
1000769999], provider "restricted": Forbidden: not usable by user or serviceaccount,
provider "nonroot-v2": Forbidden: not usable by user or serviceaccount, provider
"nonroot": Forbidden: not usable by user or serviceaccount, provider "hostmount-anyuid":
Forbidden: not usable by user or serviceaccount, provider "machine-api-termination-handler":
Forbidden: not usable by user or serviceaccount, provider "hostnetwork-v2":
Forbidden: not usable by user or serviceaccount, provider "hostnetwork": Forbidden:
not usable by user or serviceaccount, provider "hostaccess": Forbidden: not
usable by user or serviceaccount, provider "node-exporter": Forbidden: not usable
by user or serviceaccount, provider "privileged": Forbidden: not usable by user
or serviceaccount]'
Steps To Reproduce
Install folloiwing the official instructions in OpenShift
I used the attached values.yaml file, tried different options in the securityContext option hoping to eliminate the securityContext section but at the end the solution was to modify the helm chart
Setup Details
Helm chart: f5-ipam-controller-0.0.4.tgz FIC Version : 0.1.5
Description
I had to remove the securityContext section in the Deployment manifest otherwise I had the following errors:
Steps To Reproduce
Install folloiwing the official instructions in OpenShift
I used the attached values.yaml file, tried different options in the securityContext option hoping to eliminate the securityContext section but at the end the solution was to modify the helm chart
values.yaml.txt