Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Failing in KMS handshake

0

Successfully I ran execute-cmd via aws command on Fargate task instance. But my teammates are running into this error message.

Encountered error while initiating handshake. KMSEncryption failed on client with status 2 error: Failed to process action KMSEncryption: error while creating new KMS service, Error creating new aws sdk session LoadClientTLSCertError: client TLS cert(true) and key(false) must both be provided

Themen
ServerlosBehälter
Tags
AWS Fargate
Sprache
English
AWS-User-2172324
gefragt vor 2 Jahren1290 Aufrufe
1 Antwort
0

Hi, this issue seems more of KMS key validity issue or permissions. could please refer the documentation[1] and validate the configuration.

Data channel encryption : The communication between your client and the container to which you are connecting is encrypted by default using TLS1.2. It is, however, possible to use your own AWS Key Management Service (KMS) keys to encrypt this data channel. The ECS cluster configuration override supports configuring a customer key as an optional parameter. When specified, the encryption is done using the specified key. Ultimately, ECS Exec leverages the core SSM capabilities described in the SSM documentation.

[1] https://aws.amazon.com/blogs/containers/new-using-amazon-ecs-exec-access-your-containers-fargate-ec2/

AWS
SUPPORT-TECHNIKER
Kiran_K
beantwortet vor 2 Jahren

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt