Support for managed identity in Azure to fetch protected assets from Azure Storage during OpenShift Container Platform 4 - Installation

Solution In Progress - Updated -

Issue

  • With our UPI installation (Azure), we require to host Ignition files somewhere for the initial installation. Those files though need to be protected with authentication to make sure only valid requests are able to fetch the files. Unfortunately this is not possible with Azure Storage so far, which is why we'd like a Feature-Request to have such functionality provided.
  • Ignition has support for IAM roles in AWS and thus can work with protected assets in AWS S3. Similar capabilities are requested in Azure, so that user-assigned managed identity would allow to fetch protected assets from Azure Storage

Environment

  • Red Hat OpenShift Container Platform (OCP) 4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content