嘗試在GKE(Google容器引擎)上安裝istio 0.1.6。GKE上的Istio安裝失敗,並且「clusterroles.rbac.authorization.k8s.io」istio-pilot「被禁止:試圖授予額外的權限」
運行後續檢查,如果羣集有RBAC(基於角色的訪問控制)功能:
$ kubectl api-versions | grep rbac
rbac.authorization.k8s.io/v1beta1
它顯示「測試」版本,所以我跑:
$ kubectl apply -f istio-0.1.6/install/kubernetes/istio-rbac-beta.yaml
Error from server (Forbidden): error when creating "istio-0.1.6/install/kubernetes/istio-rbac-beta.yaml": clusterroles.rbac.authorization.k8s.io "istio-pilot" is forbidden: attempt to grant extra privileges:...
集羣角色綁定創建沒有幫助:
$ kubectl create clusterrolebinding myname-cluster-admin-binding --clusterrole=cluster-admin [email protected]
任何想法如何解決這個問題?
更多細節:
$ kubectl version
Client Version: version.Info{Major:"1", Minor:"6", GitVersion:"v1.6.2", GitCommit:"477efc3cbe6a7effca06bd1452fa356e2201e1ee", GitTreeState:"clean", BuildDate:"2017-04-19T20:33:11Z", GoVersion:"go1.7.5", Compiler:"gc", Platform:"linux/amd64"}
Server Version: version.Info{Major:"1", Minor:"6", GitVersion:"v1.6.4", GitCommit:"d6f433224538d4f9ca2f7ae19b252e6fcb66a3ae", GitTreeState:"clean", BuildDate:"2017-05-19T18:33:17Z", GoVersion:"go1.7.5", Compiler:"gc", Platform:"linux/amd64"}
您使用的kubernetes的版本是什麼? – sfgroups
添加到問題。謝謝。 –