vSphere Username and Password Changes

[Nicotrel]

What happened: When creating a workload cluster and using different credentials than what the management cluster was created with, the workload cluster is created and we can see on the management cluster that the credentials are as expected. After a few mins, we check the secret again for the credentials and they are changed to match what is used to create the management cluster.

What you expected to happen: We would expect that each cluster could have it's own credentials and not what the management cluster uses.

How to reproduce it (as minimally and precisely as possible): Create a management cluster. Change to different credentials. Create workload cluster via the management cluster.

Anything else we need to know?: Trying to verify how to use a single management cluster to provision workload clusters in multiple vsphere servers/datacenters. Seems like we would have to use the same credentials across the board?

Environment:

• EKS Anywhere Release: v0.11.4
• EKS Distro Release: kubernetes-1-23-eks-5, kubernetes-1-23-eks-8

[michaelday008]

Any update on this. We have 2 datacenters, with mgmt cluster in dc1, and workload in dc2. Both have different vsphere credentials, and we frequently see account lockouts happen because the mgmt cluster is sending dc1 credentials to dc2 vcenter.