Specifications
kubernetes version: 1.24.9 Cert-Manager Version: 1.7.2 vault version: 0.23.0
ERROR
* permission denied
cert-manager/clusterissuers "msg"="error setting up issuer" "error"="error reading Kubernetes service account token from vault-cluster-issuer-secret: error calling Vault server: Error making API request.\n\nURL: POST https://vault.vault.svc.cluster.local:8200/v1/auth/kubernetes/login\nCode: 403. Errors:\n\n* permission denied" "resource_kind"="ClusterIssuer" "resource_name"="vault-cluster-issuer" "resource_namespace"="" "resource_version"="v1"
cert-manager/clusterissuers "msg"="re-queuing item due to error processing" "error"="error reading Kubernetes service account token from vault-cluster-issuer-secret: error calling Vault server: Error making API request.\n\nURL: POST https://vault.vault.svc.cluster.local:8200/v1/auth/kubernetes/login\nCode: 403. Errors:\n\n* permission denied" "key"="vault-cluster-issuer"
vault-cluster-issuer: Failed to initialize Vault client: error reading Kubernetes service account token from vault-cluster-issuer-secret: error calling Vault server: Error making API request.
URL: POST https://vault.vault.svc.cluster.local:8200/v1/auth/kubernetes/login
Code: 403. Errors:
While trying to update the internal certificate generated by the vault cluster by the certmanager issuer, the cert manager issuer is coming up with this particular error.
message: >-
Failed to initialize Vault client: error reading Kubernetes service
account token from vault-cluster-issuer-secret: error calling Vault
server: Error making API request.
URL: POST
https://vault.vault.svc.cluster.local:8200/v1/auth/kubernetes/login
Code: 403. Errors:
* permission denied
