I am trying to run an icinga2 satellite in an hosted Openshift Cluster. The issue is that the container gets started on the OpenShift Container Platform with an arbitrarily assigned user ID. This is due to security and we can’t change that. If I try to start the icinga2 service in the container I am getting the following error:
$ /usr/sbin/icinga2 daemon -x debug -c /etc/icinga2/icinga2.conf -e /var/log/icinga2/icinga2.err
critical/cli: setgroups() failed with error code 1, “Operation not permitted”
critical/cli: Please re-run this command as a privileged user or using the “nagios” account.
I already tried a workaround using nss-wrapper described here https://docs.openshift.com/container-platform/3.11/creating_images/guidelines.html#openshift-specific-guidelines.
As you can see below, I am user nagios, but not in the right group.
$ getent passwd nagios
However I am getting the same issue.
Is this just a matter of permissioning? What can I change within the Container to be able to start icinga2 with any user? Any help is welcome. Thanks in advance. Regards.