From c0a72d25d892480aa471de590cd8d2bfc4ca8b5b Mon Sep 17 00:00:00 2001 From: Suruchi Kumari Date: Wed, 29 Nov 2023 13:26:04 +0000 Subject: [PATCH] added doc for setting up cloud provider kubectl auth via plugin Signed-off-by: GitHub --- .../reference/access-authn-authz/authentication.md | 4 ++++ .../en/docs/tasks/tools/included/verify-kubectl.md | 13 ++++++++++++- 2 files changed, 16 insertions(+), 1 deletion(-) diff --git a/content/en/docs/reference/access-authn-authz/authentication.md b/content/en/docs/reference/access-authn-authz/authentication.md index 7bc2a3d560..a2ddea62a1 100644 --- a/content/en/docs/reference/access-authn-authz/authentication.md +++ b/content/en/docs/reference/access-authn-authz/authentication.md @@ -888,6 +888,10 @@ protocol specific logic, then returns opaque credentials to use. Almost all cred use cases require a server side component with support for the [webhook token authenticator](#webhook-token-authentication) to interpret the credential format produced by the client plugin. +{{< note >}} +Earlier versions of `kubectl` included built-in support for authenticating to AKS and GKE, but this is no longer present. +{{< /note >}} + ### Example use case In a hypothetical use case, an organization would run an external service that exchanges LDAP credentials diff --git a/content/en/docs/tasks/tools/included/verify-kubectl.md b/content/en/docs/tasks/tools/included/verify-kubectl.md index 7824691265..602ac7b10d 100644 --- a/content/en/docs/tasks/tools/included/verify-kubectl.md +++ b/content/en/docs/tasks/tools/included/verify-kubectl.md @@ -35,4 +35,15 @@ If kubectl cluster-info returns the url response but you can't access your clust ```shell kubectl cluster-info dump -``` \ No newline at end of file +``` + +{{< note >}} +### Troubleshooting the 'No Auth Provider Found' Error Message + +In Kubernetes **v1.26**, kubectl removed the built-in authentication for the following cloud +providers managed Kubernetes offerings. These providers have released kubectl plugins to provide the cloud-specific authentication. For instructions, refer to the following provider documentation: + +* AKS (Azure): [kubelogin plugin](https://github.com/Azure/kubelogin) +* GKE (Google Cloud): [gke-gcloud-auth-plugin](https://cloud.google.com/kubernetes-engine/docs/how-to/cluster-access-for-kubectl#install_plugin) + +{{< /note >}} \ No newline at end of file