Master Scale-up playbook doesn't land the pre-existing service-signer certs

Solution In Progress - Updated -

Issue

  • When scaling up the cluster (or rebuilding a previously running master) the service signer certs aren't being copied across from on of the pre-existing masters. If one of the [new_masters] being built happens to be the first master in the list of [masters] this can in turn lead to a new CA being generated and inconsistent CAs across the cluster. Otherwise this seems to simply result in the master services failing to start.

Environment

  • Openshift Container Platform
    • 3.4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.