Configure customPullSecret in DynaKube
To define a custom pull secret
-
Sign in to Docker with your Dynatrace environment ID as username.
docker login <environmentURL> -u <environmentID>
-
Follow the instructions for creating a secret based on existing credentials.
Expected behavior
When a DynaKube custom resource is applied, a pull-secret
called <dynakube-name>-pull-secret
is generated by default. This pull-secret
is used by:
- Kubernetes to pull OneAgent and ActiveGate images from the environment registry.
- Dynatrace Operator to check the manifests of the registry.
If you set the customPullSecret
field in DynaKube, no pull secret is generated. To pull an image directly from the environment registry, the secret that the customPullSecret
points to needs to have auth
credentials for the environment registry.
Example auth
entry for the environment registry in .dockerconfig.json
.dockerconfigjson: {
"auths": {
"<tenant-registry>": {
"username": "<tenant-uid>",
"password": "<apiToken>",
"auth": "<tenant-uid>:<apiToken>" # <- base64 encoded; should be the one used by DynaKube.
};
....
},
}