Cannot register AKS (Azure K8S Service) cluster using workload-identity #3260
-
|
I have 2 AKS cluster running in 2 different Azure subscriptions. I have installed ArgoCD on one AKS cluster and use it to deploy an application to another AKS cluster. But when I try to register AKS cluster using workload identity as mentioned in this documentation, I get the following error - ArgoCD version information that I am currently using - ArgoCD helm chart version information that I am currently using - I have configured the workload identity at
I have added RBAC role assignments for this workload identity to the target AKS cluster (which I want to register to ArgoCD).
For the safe side, I have also role assignment to the resource-group which will be created by AKS service. The one that starts with I have added a label to the pods and added the annotations to the service-accounts as mentioned in the documentation. For example purpose I have just provided the screenshots of
Finally, I have created K8S secret to register AKS cluster with ArgoCD.
I am completely lost on what is missing or what is going wrong with this setup. Therefore, any help would be appreciated 🙏 |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 2 replies
-
|
Hi @sani-vv You want to ask in upstream since it's about Argo CD's feature? |
Beta Was this translation helpful? Give feedback.
-
|
Sure, thanks. |
Beta Was this translation helpful? Give feedback.
-
|
Hi, I had the same issue; What worked for me was to set up |
Beta Was this translation helpful? Give feedback.
-
|
@ibiernacki Thanks for the suggestion. This has worked for me. |
Beta Was this translation helpful? Give feedback.
Hi,
I had the same issue;
What worked for me was to set up
Microsoft Entra ID authentication with Azure RBACin Security section (of target AKS cluster)