Service account
Supported Configurations
Running the control plane as a container with:
Modify the vCluster control plane's ServiceAccount. You may need to do this in these situations:
- You are using a private image registry. See
defaultImageRegistryconfiguration. - You are using a Cloud provider's IAM integration, such as Google's Workload Identity and AWS's IAM roles for service accounts(IRSA).
- You need to provide AuthN or AuthZ for cloud provider image registries.
Config reference​
serviceAccount object ​
ServiceAccount specifies options for the vCluster control plane service account.
serviceAccount object ​enabled boolean true ​
Enabled specifies if the service account should get deployed.
enabled boolean true ​name string ​
Name specifies what name to use for the service account.
name string ​imagePullSecrets object[] ​
ImagePullSecrets defines extra image pull secrets for the service account.
imagePullSecrets object[] ​name string ​
Name of the image pull secret to use.
name string ​annotations object {} ​
Annotations are extra annotations for this resource.
annotations object {} ​labels object {} ​
Labels are extra labels for this resource.
labels object {} ​