Hello, i signed John CSR using openssl x509 and i created the role and rolebinding, but it failed
should i use yaml file to signed the csr or the way i did it is accepted?
Thanks
Hello, i signed John CSR using openssl x509 and i created the role and rolebinding, but it failed
should i use yaml file to signed the csr or the way i did it is accepted?
Thanks
I am also confused/missing something here. After following along with the creation of the CSR in the Mock Exam 2 solution video (which is missing the signerName key). The instructor receives Approved, Issued after approving the CSR. However, in my Mock Exam, I am seeing only Approved. I am able to perform the roles, rolebinding, and can-i commands without issue. When inspecting the Error Details, I am confident the issue is the lack of Issued in the following output:
kubectl describe csr john-developer | grep Status| grep Approved,Issued",“err_message”:“Command ‘kubectl describe csr john-developer | grep Status| grep Approved,Issued’ returned non-zero exit status 1.”
controlplane $ kubectl describe csr john-developer
Name: john-developer
Labels:
Annotations:
CreationTimestamp: Wed, 28 Oct 2020 14:50:53 +0000
Requesting User: kubernetes-admin
Signer: kubernetes.io/john
Status: Approved
Subject:
Common Name: john
Serial Number:
Events:
Any feedback would be appreciated.
Hello, @kcnud
Can you please share your csr yaml file ? Recently In v1.19, they have made a few changes in CSR…
Hey @Tej-Singh-Rana
I figured it out; I was messing up the signerName. The following CSR works appropriately, is issued, and scores as success.
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
name: john-developer
spec:
groups:
I was getting the similar error
but thanks to this post/comments here
Now I can refer this: Certificates and Certificate Signing Requests | Kubernetes