This message was deleted.
# rke2
a
This message was deleted.
c
Sounds like you’ve enabled one of the CIS hardened profiles that enforces pod security policy. You can disable that hardening, or modify the elasticsearch deployment to not run a privileged, root container
f
Yes, we're running cis 1.6 I think.
c
yep that’d do it.
f
Well, we'll just set that setting on the bare metal and comment out the init pod in the chart that is trying to do it.
c
you might check with the operator project to see if they have a different way of addressing that problem, or if there is an open issue for supporting hardened clusters.
c