-
|
I am using the CSI driver provider and on Azure and there is a security recommendation as follows |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
Which version of the driver and provider are you running in the cluster?
|
Beta Was this translation helpful? Give feedback.
-
|
Thank you! |
Beta Was this translation helpful? Give feedback.
Which version of the driver and provider are you running in the cluster?
/var/lib/kubelet/podsis required for the driver: https://github.com/kubernetes-sigs/secrets-store-csi-driver/blob/main/deploy/secrets-store-csi-driver.yaml#L94. This is the volume directory for pods and the target path in this dir is mounted into the pod astmpfs./etc/kubernetes/secrets-store-csi-providersis used for the unix socket that enable driver <-> provider communication. If you don't wish to use/etc/kubernetes/secrets-store-csi-providers, then you can change that to a different path that's allowed. Note, this change has to be made in all the yamls for the driver and provider and is also customisable with…