By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Couldn't retrieve verification key from your identity provider

0

I have created an OIDC provider in IAM.

The url is: idgatewayawsstage.flqa.net/
The configuration is accessible at: https://idgatewayawsstage.flqa.net/.well-known/openid-configuration
From there you can get the jwks_uri and go here: https://idgatewayawsstage.flqa.net/.well-known/jwks

The "iss" in the claims is: "https://idgatewayawsstage.flqa.net/" and is apparently matched. I can change the url value in the provider and get the "No OpenIDConnect provider found" error.

Upon attempting an action via the api passing a valid JWT in the WebIdentityCredentials with the roleArn that trusts the OIDC provider I receive the error: Couldn't retrieve verification key from your identity provider, please reference AssumeRoleWithWebIdentity documentation for requirements

Can anyone explain why I am receiving this error? I have reviewed the suggested documentation and have not come across any help.

Topics
Security, Identity, & Compliance
Tags
AWS Identity and Access Management
Language
English
jsheldon
asked 5 years ago1736 views
2 Answers
0

Any luck solving this? I see the same.

bradmagic7s
answered 3 years ago
0

Hi. I am also hitting this issue with EKS. Is there any more documentation on how to solve?

iparan
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content