Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
r
rhythmic-traffic-52280
02/23/2023, 10:04 AMHi there! I'm trying to setup an ssl-certificate for a custom domain, following this guide. Only difference: I use an existing zone (getting it via the zone ID). The whole stack is in eu-west-1, so I created a dedicated provider for us-east-1 (same situation as in the guide). I provide an AWS profile with full admin access and everything else worked fine so far. But as soon as I try to create the cert, Pulumi fails with this message:
Diagnostics:
aws:acm:Certificate (ssl-cert):
error: unable to validate AWS credentials.
Details: no valid credential sources for Pulumi AWS Classic found.
Please see <https://www.pulumi.com/registry/packages/aws/installation-configuration/>
for more information about providing credentials.
Error: failed to refresh cached credentials, no EC2 IMDS role found, operation error ec2imds: GetMetadata, request send failed, Get "<http://169.254.169.254/latest/meta-data/iam/security-credentials/>": dial tcp 169.254.169.254:80: i/o timeout
Make sure you have set your AWS region, e.g. `pulumi config set aws:region us-west-2`.After doing more tests I was able to isolate the problem to the custom provider for
us-east-1const awsConfig = new pulumi.Config('aws');
const awsProfile = awsConfig.get('profile');
const awsUsEast1 = new aws.Provider('aws-provider-us-east-1', {
region: 'us-east-1',
profile: awsProfile,
});