AWS re:Postを使用することにより、以下に同意したことになります AWS re:Post 利用規約
AWS re:Postre:Post

EKS Anywhere\Connector - Register New Cluster Button Does Not React

0

I've been able to create a local EKS Anywhere cluster in vCenter. I'd like to register it with EKS (using the webUI) but when I complete the form the 'Register' button doesn't react at all. There are no indications of missing fields, no error, and the button is not 'greyed out' it just doesn't react at all when clicked. We have created the AmazonEKSConnectorAgentRole role as defined in the prereqs and I have the required permissions. eks:RegisterCluster ssm:CreateActivation ssm:DeleteActivation iam:PassRole

トピック
コンテナ
タグ
Amazon Elastic Kubernetes Service
言語
English
thomaseldredge
質問済み 2年前357ビュー
1回答
0

According to the documentation for Amazon EKS connector IAM role, you will need to create an inline policy and the trust-relationship for the AmazonEKSConnectorAgentRole as shown below.

Please verify if your AmazonEKSConnectorAgentRole is configured as shown below.

IAM Policy:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "SsmControlChannel",
            "Effect": "Allow",
            "Action": [
                "ssmmessages:CreateControlChannel"
            ],
            "Resource": "arn:aws:eks:*:*:cluster/*"
        },
        {
            "Sid": "ssmDataplaneOperations",
            "Effect": "Allow",
            "Action": [
                "ssmmessages:CreateDataChannel",
                "ssmmessages:OpenDataChannel",
                "ssmmessages:OpenControlChannel"
            ],
            "Resource": "*"
        }
    ]
}

Trust Relationship:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "SSMAccess",
            "Effect": "Allow",
            "Principal": {
                "Service": [
                    "ssm.amazonaws.com"
                ]
            },
            "Action": "sts:AssumeRole"
        }
    ]
}

I have followed the documentation for Amazon EKS connector IAM role and I was able to register the cluster.

You can also create an issue in the AWS containers-roadmap project using this link - https://github.com/aws/containers-roadmap/issues/new/choose

profile pictureAWS
サポートエンジニア
Venkat Penmetsa
回答済み 2年前
  • thomaseldredge
    2年前

    Thanks for your reply. The connector role and trust relationship were already created.

    Should there be any error generated when the cluster cannot be registered? It seems odd that the register button just does nothing.

ログインしていません。 ログイン 回答を投稿する。

優れた回答とは、質問に明確に答え、建設的なフィードバックを提供し、質問者の専門分野におけるスキルの向上を促すものです。

質問に答えるためのガイドライン

関連するコンテンツ