Hide Forgot
Verified this bug from pr https://github.com/openshift/cluster-openshift-apiserver-operator/pull/491 version 1. export the current secret $ oc get secret/pull-secret -n openshift-config --template='{{index .data ".dockerconfigjson" | base64decode}}' >pullsecret.orig 2. $ cp pullsecret.orig pull.json 3. Modify registry+secret to pull.json 4. reimport the secret $ oc set data secret/pull-secret -n openshift-config --from-file=.dockerconfigjson=./pull.json 5. wait for roll out and veryfy, e.g. via $ for node in `oc get no |awk -F " " '/Ready/ {print $1}'`; do oc debug node/$node -- chroot /host cat /var/lib/kubelet/config.json;done 6. Diff the secret, the secret are same $ oc -n openshift-apiserver rsh apiserver-XXXXnnnn-xxxx cat /var/lib/kubelet/config.json | jq '.auths."registry.redhat.io".auth' > apipod-pullsecret $ diff pull.json apipod-pullsecret Import a image from the private registry, imported successfully.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.9.21 bug fix update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2022:0488