istio
/
istio.io
mirror of https://github.com/istio/istio.io.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

additional permission steps in openshift for running applications (#542)

This commit is contained in:
Chakradhar Rao Jonagam 2017-09-27 11:16:39 -05:00 committed by Shriram Rajagopalan
parent 9536e59bcc
commit cb2bc20a4c
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
_docs/setup/kubernetes/quick-start.md
View File

@ -52,6 +52,11 @@ If you wish to enable [transparent injection of sidecar]({{home}}/docs/setup/kub
```bash
oc adm policy add-scc-to-user anyuid -z istio-ingress-service-account -n istio-system
oc adm policy add-scc-to-user anyuid -z istio-egress-service-account -n istio-system
oc adm policy add-scc-to-user anyuid -z default -n istio-system
```
Service account that runs application pods need privileged security context constraints as part of sidecar injection.
```bash
oc adm policy add-scc-to-user privileged -z default -n <target-namespace>
```
* Install or upgrade the Kubernetes CLI