You're viewing documentation for Anthos Config Management 1.3. You can continue using this version, or use the current version.

Policy Controller Emergency Shutoff

In the event Policy Controller is causing issues in your cluster and the webhook needs to be disabled, the fastest way to do this is to run kubectl edit:

kubectl edit validatingwebhookconfigurations.admissionregistration.k8s.io gatekeeper-validating-webhook-configuration

Delete the webhooks field and everything underneath it.

To re-enable Policy Controller, run

kubectl delete validatingwebhookconfigurations.admissionregistration.k8s.io gatekeeper-validating-webhook-configuration

This will cause the operator to regenerate the webhook configuration, which will reconfigure the API server to use Policy Controller as an admission webhook.

What's next?