06/17/2022, 5:15 PM
kinda a shot in the dark here, but does anyone know if you can use a service principal for azure-disk managed StorageClass? I'm using a RKE2 deployed on a VMSS in azure and the kube-controller-manager is trying to use the User Managed Identity attached to the VMSS to create PVCs, which doesn't have access to do so, and I'd like to avoid giving it access to do so. I'm using a service principal in the azure cloud conf
🤦‍♂️ I had
"useManagedIdentityExtension": true