What happened:
Kubernetes 1.19 is not compatible with the AKS Azure Policy add-on.
1.19 clusters will return this error via gatekeeper controller and policy webhook pods.
2020/09/22 20:06:55 http: TLS handshake error from 10.244.1.14:44282: remote error: tls: bad certificate
Anything else we need to know?:
The fix is in-flight from AKS and details will be released in the coming week.
How to mitigate?:
Avoid using K8s 1.19 (preview) with the Azure Policy add-on. The add-on can be used with any GA supported version such as 1.16, 1.17, or 1.18.
What happened:
Kubernetes 1.19 is not compatible with the AKS Azure Policy add-on.
1.19 clusters will return this error via gatekeeper controller and policy webhook pods.
Anything else we need to know?:
The fix is in-flight from AKS and details will be released in the coming week.
How to mitigate?:
Avoid using K8s 1.19 (preview) with the Azure Policy add-on. The add-on can be used with any GA supported version such as 1.16, 1.17, or 1.18.