service account kube-system/default not found when creating cluster
wangzhen127 opened this issue · 5 comments
I was playing gcp-deployer and following the instructions README and CONTRIBUTING pages. I encountered errors about creating service account kube-system/default when creating the cluster.
Here are the error messages:
$ ./gcp-deployer create -c cluster.yaml -m machines.yaml
I0411 14:36:50.570470 193113 deploy_helper.go:58] Starting cluster creation test1
I0411 14:36:50.570536 193113 deploy_helper.go:60] Starting master creation gce-master-test1
I0411 14:36:52.730439 193113 machineactuator.go:525] Wait for insert "operation-1523482611246-569996fdd63b1-88cf21e0-e0244426"...
I0411 14:36:57.895885 193113 machineactuator.go:535] Finish wait for insert "operation-1523482611246-569996fdd63b1-88cf21e0-e0244426"...
I0411 14:36:57.895938 193113 deploy_helper.go:67] Created master gce-master-test1
I0411 14:36:58.067002 193113 deploy_helper.go:210] Waiting for Kubernetes to come up...
I0411 14:37:21.619259 193113 deploy_helper.go:210] Waiting for Kubernetes to come up...
I0411 14:37:33.379354 193113 deploy_helper.go:210] Waiting for Kubernetes to come up...
I0411 14:37:44.897590 193113 deploy_helper.go:210] Waiting for Kubernetes to come up...
I0411 14:37:59.024332 193113 deploy_helper.go:210] Waiting for Kubernetes to come up...
I0411 14:38:15.501733 193113 deploy_helper.go:210] Waiting for Kubernetes to come up...
I0411 14:38:18.288531 193113 deploy_helper.go:219] Kubernetes is up.. Writing kubeconfig to disk.
I0411 14:38:18.337351 193113 deploy_helper.go:251] wrote kubeconfig to [/usr/local/google/home/zhenw/.kube/config]
I0411 14:38:18.337385 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:38:22.278609 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:38:27.999262 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:38:36.539631 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:38:43.693266 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:38:53.844676 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:39:05.950901 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:39:22.800370 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:39:41.193097 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:40:04.354222 193113 deploy_helper.go:267] Waiting for apiserver to become healthy...
I0411 14:40:04.517452 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:40:13.074464 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:40:20.730787 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:40:30.170815 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:40:43.501165 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:41:02.714841 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:41:31.174479 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:41:55.879174 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:42:26.844124 193113 deploy_helper.go:287] Waiting for the service account to exist...
I0411 14:43:19.115038 193113 deploy_helper.go:287] Waiting for the service account to exist...
E0411 14:43:19.155052 193113 deploy_helper.go:293] Error waiting for service account: timed out waiting for the condition
I0411 14:43:19.155097 193113 deploy.go:128] Deleting master vm gce-master-test1
I0411 14:43:20.095424 193113 machineactuator.go:525] Wait for delete "operation-1523482999410-5699987004d51-a4f56963-fb18f34b"...
I0411 14:44:37.557110 193113 machineactuator.go:535] Finish wait for delete "operation-1523482999410-5699987004d51-a4f56963-fb18f34b"...
I0411 14:44:37.557262 193113 serviceaccount.go:107] No service a/c found in cluster.
F0411 14:44:37.557281 193113 create.go:50] service account kube-system/default not found: timed out waiting for the condition
Attempting to figure out why this is happening.
hello @wangzhen127 it appears that the issue for me, is that the controller-manager service is not able to start because it can't access the cluster API. The reason why it can't access the API is it is going against the external IP endpoint insteaad of the internal IP endpoint.
I was able to get past this issue by going into the Google Cloud VPC network console and creating a firewall rule that enabled ingress traffic from all sources to all ports.
Thanks! The problem is now solved.