Why an authentication failure with code 403 is present in the audit logs?
Issue
There is an authentication failure with code 403 in the audit logs.
{"kind":"Event","apiVersion":"audit.k8s.io/v1","level":"Metadata","auditID":"aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee","stage":"ResponseComplete","requestURI":"/","verb":"head","user":{"username":"system:anonymous","groups":["system:unauthenticated"]},"sourceIPs":["10.0.0.207"],"userAgent":"Go-http-client/2.0","responseStatus":{"metadata":{},"status":"Failure","reason":"Forbidden","code":403},"requestReceivedTimestamp":"2023-04-10T13:56:45.164420Z","stageTimestamp":"2023-04-10T13:56:45.169930Z","annotations":{"authorization.k8s.io/decision":"forbid","authorization.k8s.io/reason":""}}
Environment
- Red Hat OpenShift Container Platform 4.x
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.