AWS re:Postを使用することにより、以下に同意したことになります AWS re:Post 利用規約
AWS re:Postre:Post

EMR clusters not running

0

Hi! I had several workflows that are running on AWS EMR with spark. Since a yesterday the cluster creation step is failing.

On the events of the cluster I see a VALIDATION_ERROR with no details. On the termination message I see EMR_DefaultRole has insufficient EC2 permissions

I've recheck my roles, recreate them, and also give them the admin policy and even with all of this the cluster does not start. Also I thought it could be some aws bug deployed so I've tried different combinations of instance type, emr versions, creating new default roles, etc. Nothing worked. On cloud trail I always see that the role is not authorized on ec2, even with the full admin policy.

Has someone experience something similar? how did you fix it? Thanks in advance!

トピック
セキュリティ、アイデンティティ、コンプライアンス分析
タグ
AWS Identity and Access ManagementAmazon EMR
言語
English
Hector
質問済み 1年前313ビュー
1回答
0
承認された回答

Check to see if you have a policy or SCP in place that requires the Instance Metadata Service V2 that is being applied to the account you are running in. This can prevent starting any instances that are not at IMDS v2. This shows as a permissions error and is really hard to link back to a policy issue/change. https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-service.html

profile pictureAWS
Keith_AWS
回答済み 1年前
AWS
サポートエンジニア
Yokesh NK
レビュー済み 2ヶ月前
  • Hector
    1年前

    Thanks! I found it was a restriction with the SCP that did not allow starting instances on subnets with public IPs. Changing it to private ones solved the issue

ログインしていません。 ログイン 回答を投稿する。

優れた回答とは、質問に明確に答え、建設的なフィードバックを提供し、質問者の専門分野におけるスキルの向上を促すものです。

質問に答えるためのガイドライン

関連するコンテンツ