I have recently faced an issue with OpenShift service account access to ElasticSearch.
I can access ElasticSearch only if a service account is mapped to the cluster-admin role.
Idea is to create a new service account with access to pod/logs and set role/permissions without binding it to the cluster-admin role. Local admin is not working as well. I wonder which set of verbs and role binding do I need to use.
Did anyone face a similar issue? Any advice is welcome.
Thank you in advance!