NSX-T Data Center CNI plug-in must be installed on the Kubernetes nodes.
sudo cat /sys/module/apparmor/parameters/enabled
sudo /etc/init.d/apparmor status
subprocess installed post-installation script returned error exit status 1
The message indicates that all the installation steps completed except the loading of the AppArmor profile.
The ncp-apparmor profile file provides an AppArmor profile for NSX node agent called node-agent-apparmor, which differs from the docker-default profile in the following ways:
- The deny mount rule is removed.
- The mount rule is added.
- Some network, capability, file, and umount options are added.
- Download the installation file appropriate to your Linux distribution.
The filename is nsx-cni-220.127.116.11.0.xxxxxxx-1.x86_64.rpm or nsx-cni-18.104.22.168.0.xxxxxxx.deb, where xxxxxxx is the build number.
- Install the rpm or deb file downloaded in step 1.
The plug-in is installed in /opt/cni/bin. The CNI configuration file 10-nsx.conf is copied to /etc/cni/net.d. The rpm will also install the configuration file /etc/cni/net.d/99-loopback.conf for the loopback plug-in.