Comments (10)
@olostan Your SP is very likely misconfigured. Please check the troubleshooting steps here: https://github.com/Azure/acs-engine/blob/master/docs/kubernetes.md#troubleshooting
from acs-engine.
How much time elapsed between the SP creation and the reboot?
Also, I know it's a weird question, but what timezone did you execute the SP creation command in?
from acs-engine.
@colemickens .. Let me answer the second question first. I executed sp creation commands, on my laptop in UTC+2 TZ!
For the first question, it's not entirely clear to me. I created the SP using the new python az
cli. Then, I submitted the k8s deployment through the azure portal. I guess it took like 5 mins to deploy. After that, I ssh'ed into master. It and all agents were not working kubectl get nodes
not returning. Restart api server docker container, made it responsive. Rebooting agent-1 made it ready
! I still did not reboot agents-{2&3}, and they are still in the "Not-ready" state, if you want to ssh to them, I'm Ok. Otherwise, if I'm free to reboot them, let me know as well. Thanks!
from acs-engine.
Rebooted remaining nodes, and they came up in ready
state
from acs-engine.
@kim0 How you get api server restarted? I've ssh-ed to master, tried to do same as you, but:
root@k8s-master-F02F8C45-0:~# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
9fb65bdb36c6 gcr.io/google_containers/hyperkube-amd64:v1.4.6 "/hyperkube kubelet -" 19 minutes ago Up 19 minutes angry_thompson
root@k8s-master-F02F8C45-0:~# kubectl get pods
^C
root@k8s-master-F02F8C45-0:~# docker restart 9fb65bdb36c6
9fb65bdb36c6
root@k8s-master-F02F8C45-0:~# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
9fb65bdb36c6 gcr.io/google_containers/hyperkube-amd64:v1.4.6 "/hyperkube kubelet -" 20 minutes ago Up 5 seconds angry_thompson
root@k8s-master-F02F8C45-0:~# kubectl get pods
Unable to connect to the server: dial tcp 13.95.157.85:443: i/o timeout
from acs-engine.
@colemickens wow... thnx. That helps - seems I really have
Unable to construct api.Node object for kubelet:
failed to get external ID from cloud provider: compute.VirtualMachinesClient#Get:
Failure responding to request: StatusCode=403
-- Original Error: autorest/azure: Service returned an error. Status=403 Code="AuthorizationFailed"
Message="The client '<guid>' with object id '<guid>' does not have authorization to
perform action 'Microsoft.Compute/virtualMachines/read' over scope '/subscriptions/<guid>/resourceGroups/edicircle/providers/Microsoft.Compute/virtualMachines/k8s-master-f02f8c45-0'."
Sorry if it is not correct place (however could be useful for others if they have same problem, but is there any clue how to add those permissions?
Actually I have created cluster exactly one-to-one as on this video: https://www.youtube.com/watch?v=nhY9XdzNbbY with az acs create ...
that should should create SP as I understand....
from acs-engine.
@olostan If you used az acs create
, you are correct, you shouldn't be experiencing this issue.
Can you please detail the exact command you ran (possibly looking through your shell history) and also paste the full output from az --version
? Thanks!
(We might end up moving this over to https://github.com/Azure/azure-cli ...)
from acs-engine.
Created Azure/azure-cli#1620
@colemickens if you have any ideas how I can manually add authorisation rights please share! thnx
from acs-engine.
auth rights to resource groups should be able to be added through the Azure Portal.
from acs-engine.
Please re-open if you encounter this issue again, since the latest az should fix this.
from acs-engine.
Related Issues (20)
- Can't create services with internal load balancer - failed to ensure host in pool: "azure - ARM rate limited(read) for operation:NicGet" HOT 1
- NetworkPolicy azure won't use kubernetes network policies HOT 6
- New version of K8S required due to CVE-2018-1002105
- generateCmd doesn't support Kubernetes Orchestrator Version 1.11.5 HOT 3
- Is there a way to have both `kubenet` and `azure` network plugins behavior in the same cluster? HOT 1
- Cannot upgrade to the latest Kubernetes orchestrator using the latest acs-engine (0.26.0) HOT 4
- Day 2 operations increasing max pods, upgrading k8s version HOT 3
- X502Certificate2 fails HOT 1
- CustomScript "exit status=98"- ERR_APT_DAILY_TIMEOUT HOT 4
- ACS generated k8s Nodes showing up as NOT READY HOT 4
- Kubectl "unauthorized error" with kubernetes v1.9.2 HOT 3
- Wrong source IP in pod-to-pod communication (kubenet) HOT 2
- Latest release is missing the usual assets (v0.26.3) HOT 2
- Trying to install K8s ACS Private cluster with AKS Engine v.29 but keep on failing with errors# HOT 4
- l get node
- Met an issue when scale up my agent pool HOT 2
- docker-engine breaks acs-engine clusters prior to v0.25.0
- Azure Kubernetes VM node size change not reflecting in Azure Kubernetes Service
- How to update cluster certificate? HOT 3
- My pod is not able to identify the external services DNS HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acs-engine.