Master Scale-up playbook doesn't land the pre-existing service-signer certs

Solution In Progress - Updated -

Issue

  • When scaling up the cluster (or rebuilding a previously running master) the service signer certs aren't being copied across from on of the pre-existing masters. If one of the [new_masters] being built happens to be the first master in the list of [masters] this can in turn lead to a new CA being generated and inconsistent CAs across the cluster. Otherwise this seems to simply result in the master services failing to start.

Environment

  • Openshift Container Platform
    • 3.4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content