Not able to see logs when given Namespaced access permissions to the Logs

Solution Verified - Updated -

Issue

  • An OpenShift group containing all the necessary roles is unable to access Loki logs from the OpenShift Console
  • After granting "Namespaced access" to the user and the group where the user is, the user is not able to see the logs from the OpenShift Console using the Developer view
  • It was followed the article "Minimum permissions required by non admin user or group to view logs in OCP console when using Lokistack" for graning all the needed roles to see the logs in Loki, but not able to access
  • It was granted the clusterRole: cluster-monitoring-view to an user to be able to see the logs from the Administrator view, but it's received the error Missing permissions to get the logs when trying to get all the application logs and when try to Filter by Namespaces the error is namespaces is forbidden: User "<username>" cannot list resource "namespaces" in API group "" at the cluster scope

Environment

  • Red Hat OpenShift Container Platform (RHOCP)
    • 4
  • Red Hat OpenShift Logging (RHOL)
    • 5.9
  • Red Hat Loki Operator
  • Red Hat OpenShift Console

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content