Bug 1772463

Summary: 4.x oc client is not compatible with OCP 3.11 for some resources
Product: OpenShift Container Platform Reporter: Maciej Szulik <maszulik>
Component: ocAssignee: Maciej Szulik <maszulik>
Status: CLOSED ERRATA QA Contact: zhou ying <yinzhou>
Severity: high Docs Contact:
Priority: high    
Version: 4.2.zCC: aos-bugs, eparis, jokerman, mfojtik, pkanthal, yinzhou
Target Milestone: ---   
Target Release: 4.2.z   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: 1763929
: 1772467 (view as bug list) Environment:
Last Closed: 2020-01-07 17:55:10 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1763929    
Bug Blocks: 1772467    

Comment 2 zhou ying 2019-12-18 05:13:38 UTC 
confirmed with latest version, the issue has fixed:

[zhouying@dhcp-140-138 ~]$ oc get SecurityContextConstraints restricted -o name
securitycontextconstraints.security.openshift.io/restricted
[zhouying@dhcp-140-138 ~]$ oc version -o yaml 
clientVersion:
  buildDate: "2019-12-13T22:26:47Z"
  compiler: gc
  gitCommit: 7207690010f08f2ae526ee3300d4a18ea65997fe
  gitTreeState: clean
  gitVersion: v4.2.11
  goVersion: go1.12.8
  major: ""
  minor: ""
  platform: linux/amd64
serverVersion:
  buildDate: "2019-12-02T08:30:15Z"
  compiler: gc
  gitCommit: d4cacc0
  gitTreeState: clean
  gitVersion: v1.11.0+d4cacc0
  goVersion: go1.10.8
  major: "1"
  minor: 11+
  platform: linux/amd64


As normal user:
[zhouying@dhcp-140-138 ~]$ oc get SecurityContextConstraints restricted -o name
Error from server (Forbidden): securitycontextconstraints "restricted" is forbidden: User "testuser1" cannot get securitycontextconstraints at the cluster scope: no RBAC policy matched

After assinged the cluster-admin role:
[zhouying@dhcp-140-138 ~]$ oc get SecurityContextConstraints restricted -o name
securitycontextconstraints.security.openshift.io/restricted
Comment 4 errata-xmlrpc 2020-01-07 17:55:10 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:0014