Problem
The service account for a container doesn't have the correct permissions.
Solution
- Find out the service account that is running on that pod.
bash
$oc get pod <pod-name> -o jsonpath='{.spec.serviceAccountName}' -n <namespace>- Add the privileged security context constraint (or the scc you want to use) to that service account.
bash
$oc adm policy add-scc-to-user privileged system:serviceaccount:<namespace>:<release_name>-newrelic-infrastructure