cluster operators degraded
garethahealy opened this issue · 1 comments
garethahealy commented
If gatekeeper is not configured correctly, it can cause the cluster operators to go into a degraded state as they cannot reconcile correctly. the network operator is the main one you see always:
2021/03/16 10:28:12 reconciling (/v1, Kind=Namespace) /openshift-multus
2021/03/16 10:28:12 could not apply (/v1, Kind=Namespace) /openshift-multus: could not update object (/v1, Kind=Namespace) /openshift-multus: admission webhook "check-ignore-label.gatekeeper.sh" denied the request: Only exempt namespace can have the admission.gatekeeper.sh/ignore label
garethahealy commented
need to add the below flag to the controller for all core namespaces: