mirror of
https://github.com/openshift/openshift-docs.git
synced 2026-02-05 12:46:18 +01:00
87 lines
2.3 KiB
Plaintext
87 lines
2.3 KiB
Plaintext
// Module included in the following assemblies:
|
|
//
|
|
// * security/external_secrets_operator/external-secrets-operator-install.adoc
|
|
|
|
:_mod-docs-content-type: PROCEDURE
|
|
[id="external-secrets-operand-install-cli_{context}"]
|
|
= Installing the External Secrets operand for Red Hat OpenShift by using the CLI
|
|
|
|
You can use the command-line interface (CLI) to install the External Secrets operand.
|
|
|
|
.Prerequisites
|
|
|
|
* You have access to the cluster with `cluster-admin` privileges.
|
|
|
|
.Procedure
|
|
|
|
. Create a `externalsecrets.openshift.operator.io` object by defining a YAML file with the following content:
|
|
+
|
|
.Example `externalsecrets.yaml` file
|
|
[source,yaml]
|
|
----
|
|
apiVersion: operator.openshift.io/v1alpha1
|
|
kind: ExternalSecrets
|
|
metadata:
|
|
labels:
|
|
app.kubernetes.io/name: external-secrets-operator
|
|
name: cluster
|
|
spec: {}
|
|
----
|
|
+
|
|
For more information on spec configuration, see "External Secrets Operator for Red Hat OpenShift APIs".
|
|
|
|
. Create the `externalsecrets.openshift.operator.io` object by running the following command:
|
|
+
|
|
[source,terminal]
|
|
----
|
|
$ oc create -f externalsecrets.yaml
|
|
----
|
|
|
|
.Verification
|
|
|
|
. Verify that the `external-secrets` pods are running by entering the following command:
|
|
+
|
|
[source,terminal]
|
|
----
|
|
$ oc get pods -n external-secrets
|
|
----
|
|
+
|
|
.Example output
|
|
[source,terminal]
|
|
----
|
|
NAME READY STATUS RESTARTS AGE
|
|
external-secrets-75d47cb9c8-6p4n2 1/1 Running 0 4h5m
|
|
external-secrets-cert-controller-676444b897-qb6ft 1/1 Running 0 4h5m
|
|
external-secrets-webhook-b566658ff-7m4d5 1/1 Running 0 4h5m
|
|
----
|
|
|
|
. Verify that the `external-secrets-operator` deployment object reports a successful status by running the following command:
|
|
+
|
|
[source,terminal]
|
|
----
|
|
$ oc get externalsecrets.operator.openshift.io cluster -n external-secrets-operator -o jsonpath='{.status.conditions}' | jq .
|
|
----
|
|
+
|
|
.Example output
|
|
[source,terminal]
|
|
----
|
|
[
|
|
{
|
|
"lastTransitionTime": "2025-06-17T14:57:04Z",
|
|
"message": "",
|
|
"observedGeneration": 1,
|
|
"reason": "Ready",
|
|
"status": "False",
|
|
"type": "Degraded"
|
|
},
|
|
{
|
|
"lastTransitionTime": "2025-06-17T14:57:04Z",
|
|
"message": "reconciliation successful",
|
|
"observedGeneration": 1,
|
|
"reason": "Ready",
|
|
"status": "True",
|
|
"type": "Ready"
|
|
}
|
|
]
|
|
----
|