GKE released Autopilot today which is a fully managed GKE cluster (think AWS Fargate). The problem is you can't seem to install webhooks. Is there another way to install cert-manager that may work?
I ran this command:
helm install cert-manager jetstack/cert-manager --namespace cert-manager --create-namespace --version 1.2.0 --set installCRDs=true
It produced this output:
Error from server (Forbidden): error when retrieving current configuration of:
Resource: "admissionregistration.k8s.io/v1, Resource=mutatingwebhookconfigurations", GroupVersionKind: "admissionregistration.k8s.io/v1, Kind=MutatingWebhookConfiguration"
Name: "cert-manager-webhook", Namespace: ""
from server for: "https://github.com/jetstack/cert-manager/releases/download/v1.2.0-alpha.2/cert-manager.yaml": mutatingwebhookconfigurations.admissionregistration.k8s.io "cert-manager-webhook" is forbidden: User "[myemail@mydomain.com]" cannot get resource "mutatingwebhookconfigurations" in API group "admissionregistration.k8s.io" at the cluster scope: GKEAutopilot authz: cluster scoped resource "mutatingwebhookconfigurations/" is managed and access is denied
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
Google Cloud
I can login to a root shell on my machine (yes or no, or I don't know):
No
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
Yes
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):See above
