AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

Failing in KMS handshake

0

Successfully I ran execute-cmd via aws command on Fargate task instance. But my teammates are running into this error message.

Encountered error while initiating handshake. KMSEncryption failed on client with status 2 error: Failed to process action KMSEncryption: error while creating new KMS service, Error creating new aws sdk session LoadClientTLSCertError: client TLS cert(true) and key(false) must both be provided

주제
서버리스컨테이너
태그
AWS Fargate
언어
English
AWS-User-2172324
질문됨 2년 전1290회 조회
1개 답변
0

Hi, this issue seems more of KMS key validity issue or permissions. could please refer the documentation[1] and validate the configuration.

Data channel encryption : The communication between your client and the container to which you are connecting is encrypted by default using TLS1.2. It is, however, possible to use your own AWS Key Management Service (KMS) keys to encrypt this data channel. The ECS cluster configuration override supports configuring a customer key as an optional parameter. When specified, the encryption is done using the specified key. Ultimately, ECS Exec leverages the core SSM capabilities described in the SSM documentation.

[1] https://aws.amazon.com/blogs/containers/new-using-amazon-ecs-exec-access-your-containers-fargate-ec2/

AWS
지원 엔지니어
Kiran_K
답변함 2년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠