diff --git a/test/e2e/auth/node_authn.go b/test/e2e/auth/node_authn.go
index e9ffde1fd15..2bb4a424dfb 100644
--- a/test/e2e/auth/node_authn.go
+++ b/test/e2e/auth/node_authn.go
@@ -53,13 +53,6 @@ var _ = SIGDescribe("[Feature:NodeAuthenticator]", func() {
 
 		nodeIPs := e2enode.GetAddressesByTypeAndFamily(&nodes.Items[0], v1.NodeInternalIP, family)
 		framework.ExpectNotEqual(len(nodeIPs), 0)
-
-		// make sure ServiceAccount admission controller is enabled, so secret generation on SA creation works
-		saName := "default"
-		sa, err := f.ClientSet.CoreV1().ServiceAccounts(ns).Get(context.TODO(), saName, metav1.GetOptions{})
-		framework.ExpectNoError(err, "failed to retrieve service account (%s:%s)", ns, saName)
-		framework.ExpectNotEqual(len(sa.Secrets), 0)
-
 	})
 
 	ginkgo.It("The kubelet's main port 10250 should reject requests with no credentials", func() {