Configure customPullSecret in DynaKube

To define a custom pull secret

1. Sign in to Docker with your Dynatrace environment ID as username.

   bashcopydownload
   docker login <environmentURL> -u <environmentID>

2. Follow the instructions for creating a secret based on existing credentials.

Expected behavior

When a DynaKube custom resource is applied, a pull-secret called <dynakube-name>-pull-secret is generated by default. This pull-secret is used by:

• Kubernetes to pull OneAgent and ActiveGate images from the environment registry.
• Dynatrace Operator to check the manifests of the registry.

If you set the customPullSecret field in DynaKube, no pull secret is generated. To pull an image directly from the environment registry, the secret that the customPullSecret points to needs to have auth credentials for the environment registry.

Example auth entry for the environment registry in .dockerconfig.json

jsoncopydownload
.dockerconfigjson: {
    "auths": {
        "<tenant-registry>": {
            "username": "<tenant-uid>",
            "password": "<apiToken>",
            "auth": "<tenant-uid>:<apiToken>" # <- base64 encoded; should be the one used by DynaKube.
         };
       ....
     },
}