sybadm
sybadm
@tnqn Not sure what happen to the information I attached previously. kubectl version WARNING: This version information is deprecated and will be replaced with the output from kubectl version --short....
K8S version: v1.27.3 I'm still facing this issue `kubectl create -f \ https://raw.githubusercontent.com/operator-framework/operator-lifecycle-manager/master/deploy/upstream/quickstart/crds.yaml kubectl create -f \ https://raw.githubusercontent.com/operator-framework/operator-lifecycle-manager/master/deploy/upstream/quickstart/olm.yaml` `Events: Type Reason Age From Message ---- ------ ---- ---- ------- Normal...
some info from spod logs `I1207 17:39:51.453204 992474 enricher.go:507] "audit" logger="log-enricher" timestamp="1701970789.495:212734" type="apparmor" node="aks-systempool-32724526-vmss00001l" namespace="security-profiles-operator" pod="spod-czdng" container="security-profiles-operator" executable="security-profil" pid=992430 apparmor="STATUS" operation="profile_replace" profile="unconfined" name="test-profile"`
have I missed anything to enable AppArmor which is not in the document or something. I'm sure many people should be using it already
> @sybadm is it possible for you to access the node and see if apparmor has loaded the profile? Not sure what location AppArmor should go but I dont see...
[Spod-ds.log](https://github.com/kubernetes-sigs/security-profiles-operator/files/13612575/Spod-ds.log) @pjbgf spod ds logs attached
> I tried it on AKS and the profile itself seems to be applied as well as loaded: > > ``` > root@aks-userpool-24947339-vmss000000:/# apparmor_status > apparmor module is loaded. >...
also profile file looks good to me ``` # pwd /etc/apparmor.d # ls -lrt total 56 -rw-r--r-- 1 root root 1592 Nov 16 2021 usr.sbin.rsyslogd drwxr-xr-x 2 root root 4096...
may be related to this https://github.com/MicrosoftDocs/azure-docs/issues/114123
> I think we have what you need implemented in #833 > > Unfortunately docs are missing. thanks @saschagrunert Is that adding pod selector ? This is how I have...