microscopic-diamond-94749
04/28/2023, 5:59 PMFailed to validate cluster: cluster version must be at least v1.23 to use PodSecurity in RKE
future-night-17486
04/28/2023, 6:55 PMmicroscopic-diamond-94749
04/28/2023, 7:02 PMfull-cluster-state
ConfigMap in the kube-system
might work ?future-night-17486
04/28/2023, 7:10 PMspec.Services.KubeAPI.PodSecurityConfiguration
is set.
Do you set the Pod Security Admission Configuration Template
when editing the cluster in Rancher ?microscopic-diamond-94749
04/28/2023, 7:32 PMapiVersion: <http://management.cattle.io/v3|management.cattle.io/v3>
kind: Cluster
I can share, though?future-night-17486
04/28/2023, 7:32 PMmicroscopic-diamond-94749
04/28/2023, 7:33 PMfuture-night-17486
04/28/2023, 7:44 PMspec.Services.KubeAPI.PodSecurityConfiguration
is not set, which is good.
Now I wonder if spec.Services.KubeAPI.PodSecurityConfiguration is set in the clusterTemplateRevision used for the cluster. Can you check it?microscopic-diamond-94749
04/28/2023, 7:49 PMkubeApi:
secretsEncryptionConfig: {}
serviceNodePortRange: 30000-32767
future-night-17486
04/28/2023, 7:58 PMmicroscopic-diamond-94749
04/28/2023, 8:10 PMfuture-night-17486
04/28/2023, 8:15 PMmicroscopic-diamond-94749
04/28/2023, 8:15 PMfuture-night-17486
04/28/2023, 8:19 PMmicroscopic-diamond-94749
04/28/2023, 8:45 PMspec.kubernetesVersion
in the k8s object directly and now the cluster isn't in Error
anymore 😛