search

DrFaust92 / terraform-kubernetes-ebs-csi-driver

Terraform module which creates Kubernetes EBS CSI controller resources on AWS EKS.
https://registry.terraform.io/modules/DrFaust92/ebs-csi-driver/kubernetes/latest
Other
31 stars 26 forks source link

IAM policy not attach to role #21

Closed abriko closed 3 years ago

abriko commented 3 years ago

After I deploy EBS volume demo(https://github.com/kubernetes-sigs/aws-ebs-csi-driver/tree/master/examples/kubernetes/dynamic-provisioning), I got error

Warning ProvisioningFailed 19s persistentvolume-controller storageclass.storage.k8s.io "ebs-sc" not found Warning ProvisioningFailed 17s ebs.csi.aws.com_ebs-csi-controller-5954f58674-jggbh_97b2d3af-7d52-4d05-9d24-a74255694b6c failed to provision volume with StorageClass "ebs-sc": rpc error: code = Internal desc = UnauthorizedOperation: You are not authorized to perform this operation. status code: 403, request id: ceb3f6fb-d9a3-4a09-8b46-1527ac3fa6c7 Warning ProvisioningFailed 15s ebs.csi.aws.com_ebs-csi-controller-5954f58674-jggbh_97b2d3af-7d52-4d05-9d24-a74255694b6c failed to provision volume with StorageClass "ebs-sc": rpc error: code = Internal desc = UnauthorizedOperation: You are not authorized to perform this operation. status code: 403, request id: 5d7b314e-a199-47b5-a494-57a7a238f325 Warning ProvisioningFailed 13s ebs.csi.aws.com_ebs-csi-controller-5954f58674-jggbh_97b2d3af-7d52-4d05-9d24-a74255694b6c failed to provision volume with StorageClass "ebs-sc": rpc error: code = Internal desc = UnauthorizedOperation: You are not authorized to perform this operation. status code: 403, request id: e9c19e8a-fbb3-4988-af9d-beea9046b40e Warning ProvisioningFailed 9s ebs.csi.aws.com_ebs-csi-controller-5954f58674-jggbh_97b2d3af-7d52-4d05-9d24-a74255694b6c failed to provision volume with StorageClass "ebs-sc": rpc error: code = Internal desc = UnauthorizedOperation: You are not authorized to perform this operation. status code: 403, request id: 886183a0-481c-4f40-987d-7a1bf4157cd9 Normal ExternalProvisioning 6s (x3 over 17s) persistentvolume-controller waiting for a volume to be created, either by external provisioner "ebs.csi.aws.com" or manually created by system administrator Normal Provisioning 1s (x5 over 17s) ebs.csi.aws.com_ebs-csi-controller-5954f58674-jggbh_97b2d3af-7d52-4d05-9d24-a74255694b6c External provisioner is provisioning volume for claim "default/ebs-claim" Warning ProvisioningFailed 1s ebs.csi.aws.com_ebs-csi-controller-5954f58674-jggbh_97b2d3af-7d52-4d05-9d24-a74255694b6c failed to provision volume with StorageClass "ebs-sc": rpc error: code = Internal desc = UnauthorizedOperation: You are not authorized to perform this operation. status code: 403, request id: f89ec4eb-93a0-4220-b781-c07587ac8eb8

And I manual attach policy to role. demo can work no error come out.