The cert-manager-operator v1.16.0 fails due to RBAC permissions in RHOCP 4.

Solution Verified - Updated -

Issue

  • In Cert Manager Operator v1.16.0, the controller fails to reconcile required RBAC resources due to insufficient permissions.

    roles.rbac.authorization.k8s.io "cert-manager-tokenrequest" is forbidden: user "system:serviceaccount:cert-manager-operator:cert-manager-operator-controller-manager" is attempting to grant RBAC permissions not currently held: {APIGroups:[""], Resources:["serviceaccounts/token"], ResourceNames:["cert-manager"], Verbs:["create"]}

Environment

  • Red Hat OpenShift Container Platform (RHOCP)
    • 4
  • Cert-Manager Operator for Red Hat OpenShift
    • v1.16.0

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content