Reputation: 51
Google Kubernetes Get Credentials
I am using:
sudo gcloud container clusters get-credentials clustername --zone zone --project project_id
to get credentials in jenkins, this works in GCP jenkins shell.
While migrating to AWS I have setup new jenkins where I am using same command (with same parameters ) but there it fails with error code :
(gcloud.container.clusters.get-credentials) ResponseError: code=403, message=Required "container.clusters.get" permission(s)
Same thing happens when I run in my local machine.
PS : I am logged into gcloud with a different GCP account from the one in command
Could help me figure out the issue
Upvotes: 1
Views: 1058
Answers (2)
Reputation: 51
'Could you run gcloud auth list and compare the results', suggestion by Mario helped
The Jenkins user was reflecting the authentication made in shell, fixing that solved the issue
Upvotes: 1
Reputation: 1279
You have to make sure that the service account you are using has the roles needed for container.clusters.get. You can check this link on how you can do that.
If you are still receiving an error, you can create a new service account, then grant the same roles needed for it.
Upvotes: 1
Related Questions
- how to get gcloud APPLICATION_CREDENTIALS?
- Get hard-coded credentials in GKE kubeconfig
- Google Cloud get cluster credentials unauthorized
- Generating a kubeconfig file and authenticating for google cloud
- Authentication to Kubernetes API of GKE cluster within Google Cloud Function
- 403 "Request had insufficient authentication scopes" during gcloud container cluster get-credentials
- How to get `provider "kubernetes"` authenticate with `google_container_cluster`
- How to set GOOGLE_APPLICATION_CREDENTIALS on GKE running through Kubernetes
- google cloud credentials for pods deployed in Kubernetes cluster?
- How to access application default credentials from a GCE container without any Google API binding?