Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

EKS Anywhere\Connector - Register New Cluster Button Does Not React

0

I've been able to create a local EKS Anywhere cluster in vCenter. I'd like to register it with EKS (using the webUI) but when I complete the form the 'Register' button doesn't react at all. There are no indications of missing fields, no error, and the button is not 'greyed out' it just doesn't react at all when clicked. We have created the AmazonEKSConnectorAgentRole role as defined in the prereqs and I have the required permissions. eks:RegisterCluster ssm:CreateActivation ssm:DeleteActivation iam:PassRole

Argomenti
Container
Tag
Servizio Amazon Elastic Kubernetes
Lingua
English
thomaseldredge
posta 2 anni fa356 visualizzazioni
1 Risposta
0

According to the documentation for Amazon EKS connector IAM role, you will need to create an inline policy and the trust-relationship for the AmazonEKSConnectorAgentRole as shown below.

Please verify if your AmazonEKSConnectorAgentRole is configured as shown below.

IAM Policy:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "SsmControlChannel",
            "Effect": "Allow",
            "Action": [
                "ssmmessages:CreateControlChannel"
            ],
            "Resource": "arn:aws:eks:*:*:cluster/*"
        },
        {
            "Sid": "ssmDataplaneOperations",
            "Effect": "Allow",
            "Action": [
                "ssmmessages:CreateDataChannel",
                "ssmmessages:OpenDataChannel",
                "ssmmessages:OpenControlChannel"
            ],
            "Resource": "*"
        }
    ]
}

Trust Relationship:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "SSMAccess",
            "Effect": "Allow",
            "Principal": {
                "Service": [
                    "ssm.amazonaws.com"
                ]
            },
            "Action": "sts:AssumeRole"
        }
    ]
}

I have followed the documentation for Amazon EKS connector IAM role and I was able to register the cluster.

You can also create an issue in the AWS containers-roadmap project using this link - https://github.com/aws/containers-roadmap/issues/new/choose

profile pictureAWS
TECNICO DI SUPPORTO
Venkat Penmetsa
con risposta 2 anni fa
  • thomaseldredge
    2 anni fa

    Thanks for your reply. The connector role and trust relationship were already created.

    Should there be any error generated when the cluster cannot be registered? It seems odd that the register button just does nothing.

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente