Argo CD sync failed due to GitOps service account user forbidden error in RHOCP 4

Solution Verified - Updated -

Issue

  • Argo CD application sync failed with a forbidden error for serviceaccount: openshift-gitops:openshift-gitops-argocd-application-controller.
Failed sync attempt to xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx: one or more objects failed to apply, reason: routes.route.openshift.io is forbidden: User "system:serviceaccount:openshift-gitops:openshift-gitops-argocd-application-controller" cannot create resource "routes" in API group "route.openshift.io" in the namespace "[namespace]",secrets is forbidden: User "system:serviceaccount:openshift-gitops:openshift-gitops-argocd-application-controller" cannot create resource "secrets" in API group "" in the namespace "[namespace]",services is forbidden: User "system:serviceaccount:openshift-gitops:openshift-gitops-argocd-application-controller" cannot create resource "services" in API group "" in the namespace "[namespace]",deployments.apps is forbidden: User "system:serviceaccount:openshift-gitops:openshift-gitops-argocd-application-controller" cannot create resource "deployments" in API group "apps" in the namespace "[namespace]"
  • The error message may appear in the APP CONDITIONS section, which is located on the right-hand side of the status bar in the Argo CD console.
  • According to this Red Hat KCS, it is not recommended to check the status of the Argo CD application or operate it from the CLI.

Environment

  • Red Hat OpenShift Container Platform 4
  • Red Hat OpenShift Service on AWS

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content