To access services in a cluster using an APIG Ingress, you must grant the APIG Controller the required permissions for APIG before you deploy the services.
Grant permissions to the APIG Controller for an ACK managed cluster
You can grant permissions to the APIG Controller in a Container Service for Kubernetes (ACK) managed cluster in two ways.
For an existing cluster
Permission verification runs automatically when you install the APIG Controller from the Add-ons page.
If permissions are not granted, the following dialog box appears. Click Authorize.
On the RAM Quick Authorization page, click Authorize.
Install the component again.
For a new cluster
When you install the APIG Controller during cluster creation, go to the Confirm step. In the Dependency Check section, check the Status of the APIG Ingress Role Authorization Check. If the Status is Failed, click Authorize.
On the RAM Quick Authorization page, click Authorize.
After the authorization is complete, return to the Confirm page and click Recheck. After the check passes, click Create Cluster.
What to do next
For more information about how to access services in an ACK cluster using an APIG Ingress, see Access an ACK managed cluster through an APIG Ingress.