glamorous-australia-21342
04/01/2021, 7:20 PMup
on an existing cluster in EKS. I determined that we needed to associate an AWS IAM Role with a Kubernetes group in order for us to connect to each other's clusters. Now however after changing the CI from the original IAM user to a service account that assumes the role we get the following error on up
.
Configured Kubernetes cluster is unreachable: unable to load schema information from the API server: the server has asked for the client to provide credentials
We have our Pulumi code outputting the kubeconfig file and its the same one I am currently connected with so it can't be that the cert is expired or the kubeconfig is invalid. Any help is appreciated.billowy-army-68599
04/01/2021, 7:37 PMaws eks get-token
https://github.com/pulumi/pulumi-eks/blob/c5fcceb8746b0ae2c1ef859fe1a7e4f70ec12398/nodejs/eks/cluster.ts#L187
So it may be your AWS IAM role might not have permission to do thatglamorous-australia-21342
04/01/2021, 7:59 PMbillowy-army-68599
04/01/2021, 8:05 PMglamorous-australia-21342
04/01/2021, 8:06 PMbillowy-army-68599
04/01/2021, 8:11 PMaws-auth
configmapglamorous-australia-21342
04/01/2021, 8:13 PMrolemappings
in the clusterbillowy-army-68599
04/01/2021, 8:15 PMglamorous-australia-21342
04/01/2021, 8:32 PMproviderCredentialOpts
billowy-army-68599
04/06/2021, 4:04 PMglamorous-australia-21342
04/06/2021, 6:33 PM