-
Notifications
You must be signed in to change notification settings - Fork 43
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[suggestion] specify necessary IAM roles in documentation #136
Comments
Hi, thanks for the suggestion and I'm glad to hear you've solved the issue already. It sounds like you are using the software with GKE. The GKE documentation states that this permission is required at https://cloud.google.com/kubernetes-engine/docs/how-to/hardening-your-cluster#use_least_privilege_sa Let us know if we can help any other way. |
The docs here don't see to talk about the service account which is very confusing: https://cloud.google.com/monitoring/kubernetes-engine/prometheus |
for anyone who search and view this page: refer: GKE workload identity
|
I had an issue where metrics weren't showing up in Monitoring and I saw the following error in the sidecar logs being printed continuously:
It was fixed by creating an IAM policy binding from the service account associated with the cluster to the role
roles/monitoring.metricWriter
.Might be helpful to explicitly specify that this permission is required somewhere in the documentation.
The text was updated successfully, but these errors were encountered: