By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Mount an AWS Secrets Manager secret in an Amazon EKS pod

0

Hi

Has anyone had any luck following the AWS Tutorial for mounting AWS Secrets Manager Secrets in an Amazon EKS Pod

When I follow the instructions and sample yaml files, validating that roles and secrets are setup - I get the following error in the csi-secrets-store logs in the kube-system namespace

 secretproviderclasspodstatus_controller.go:263] "no secret objects defined for spc, nothing to reconcile" spc="default/nginx-deployment-aws-secrets" spcps="default/nginx-deployment-bfd6fdc6c-ls5pm-default-nginx-deployment-aws-secrets"

When I update the SecretProviderClass yaml to use secretObjects instead of objects - I get the following error

E1115 11:53:47.051196       1 nodeserver.go:242] "failed to mount secrets store object content" err="missing object versions" pod="default/nginx-deployment-bfd6fdc6c-fwqft"

Has anyone any recommendations on what I can do?

Topics
ContainersSecurity, Identity, & Compliance
Tags
Amazon Elastic Kubernetes ServiceAWS Secrets Manager
Language
English
Damien Gallagher
asked 5 months ago276 views
1 Answer
0

The error message seems to indicate that the version number of the secret has not been provided.

Without the configuration file it's not possible to tell but it's worthwhile reading the documentation about secret versions.

profile pictureAWS
EXPERT
Brettski-AWS
answered 5 months ago
profile pictureAWS
EXPERT
Jonathan_D
reviewed 5 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content