cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Dynatrace operator 0.14.0 or 0.14.1 issue

Mizső
DynaMight Guru
DynaMight Guru

Hi Folks,

FYI. We have faced an issue at many custormers with Dynatrace Operator. We have received ActiveGate token expiring error at containerized AGs. (Fullstack - Managed)

Operator log:

{"error":"getting reference \"XXXXXXXXXXXXXX/linux/activegate:latest\": Get \"https://XXXXXXXXXXXXX/v2/\": tls: failed to verify certificate: x509: certificate signed by unknown authority","level":"error","logger":"dynakube","msg":"error reconciling DynaKube","name":"dynakube","namespace":"dynatrace","stacktrace":"Get \"https://XXXXXXXXXXXXXXXXX/v2/\": tls: failed to verify certificate: x509: certificate signed by unknown authority

4 hours ago Dynatrace Operator version 0.14.2 released on GITHUB. I hope it will be reached soon via RHEL channel and there will be an official documenatation about it.

Best regards,

Mizső   

Dynatrace Community RockStar 2024, Certified Dynatrace Professional
9 REPLIES 9

radek_jasinski
DynaMight Guru
DynaMight Guru

Hi @Mizső 

I also had a similar problem on several environments late last week. The log entry was the same and new certificates had to be generated on the client environment side.
However, I do not know if this is a 1 to 1 problem.

Radek

Have a nice day!

Mizső
DynaMight Guru
DynaMight Guru

Hi @radek_jasinski ,

Thanks for the information. Do you refer to the operator token (former api token)? 

Access tokens and permissions - Dynatrace Docs

Thanks in advance.

Best regards,

Mizső 

Dynatrace Community RockStar 2024, Certified Dynatrace Professional

The situation on my client's environment was such that I had to, as I mentioned, generate new certificates (because the client uses its own) and re-generate access tokens. This was happening on a Managed environment.

Have a nice day!

Thanks @radek_jasinski, I am going to try it... 😉

Dynatrace Community RockStar 2024, Certified Dynatrace Professional

Mizső
DynaMight Guru
DynaMight Guru

Hi Folks,

The problem was:

{"error":"getting reference \"dynatracexxxxxxxxx.hu/linux/activegate:latest\": Get \"https://dynatracexxxxxxxxxx.hu/v2/\": tls: failed to verify certificate: x509: certificate signed by unknown authority"

Mizs_0-1700478924073.png

Mizs_1-1700478954612.png

The solution was:

Creating a config map about the managed DT server cert in the dynatrace project:

Mizs_2-1700479797473.png

Mizs_3-1700479834681.png

Change the dynkube yaml ( skipCertCheck change from true to false and add trustedCAs entry with the above created configmap value) and reload it in the dynatrace project:

Mizs_4-1700479922749.png

I hope it helps.

Best regards,

Mizső

Dynatrace Community RockStar 2024, Certified Dynatrace Professional

radek_jasinski
DynaMight Guru
DynaMight Guru

Thank you for sharing  this information:)

Have a nice day!

Jorge-salinas
Visitor

Do you know how can fix this same but in GCP?

Hi @Jorge-salinas,

Do you use SaaS Dynatrace form GCP?

Best regards,

Mizső

Dynatrace Community RockStar 2024, Certified Dynatrace Professional

Yes, I´m trying deploy in GCP GKE

Featured Posts