Open UriZafrir opened 1 month ago
Ignition certificates are only valid for a short period. IIRC 24 hours. A common cause of this error is if ignition configs are generated well in advance of the install.
For further debugging we would need to inspect the certs. It would be good for us to update the troubleshooting docs on how to do this.
Hi I didn't make the ignition config in advance. How can I debug the certificates?
Version
Platform:
Please specify the platform type: aws, libvirt, openstack or baremetal
baremetal
Please specify:
openshift-install
. If you don't know, then it's IPI)UPI (semi-manual installation on customised infrastructure)
IPI
What happened?
during openshift install on vsphere the master nodes all get ignition /config/master tls failed to verify certificate x509 and install fails.
Enter text here. See the troubleshooting documentation for ideas about what information to collect. For example, if the installer fails to create resources, attach the relevant portions of your
.openshift_install.log
.What you expected to happen?
installer to succeed
How to reproduce it (as minimally and precisely as possible)?
Anything else we need to know?
References
this is the closest i got to a reference https://access.redhat.com/solutions/4271572