AWS IAM role requirements

shirvan · April 15, 2024, 6:42pm

Hello,

I’m trying to configure the deployment to use a custom service role. Looking at the docs there is no indication of what access is required by the pods or where the role should be specified in the helm chart, specifically I’m trying to deal with:

Could not create volume "pvc-f7afc20f-cb9c-4d77-84d4-4e73f6aa689f": could not create volume in EC2: UnauthorizedOperation: You are not authorized to perform this operation. User: arn:aws:sts::xxxxxxxxxx:assumed-role/default_eks_role/i-xxxxxxxxxx is not authorized to perform: ec2:CreateVolume on resource: arn:aws:ec2:us-west-2:xxxxxxxxxx:volume/* because no identity-based policy allows the ec2:CreateVolume action.

Is there a set of documents I’m missing?

ramiro · April 16, 2024, 6:17am

Hi @shirvan , welcome to our community!

If you are using Okteto on your EKS cluster, I recommend looking at our documentation. We now include a comprehensive guide on installing Okteto in an EKS cluster and the IAM roles required for volume management.

I hope this helps!

Topic		Replies	Views
How Do I configure Okteto with cert-manager and AWS Route53? How Do I?	4	694	February 8, 2024
Registry with Encrypted AWS S3 bucket Support	11	477	March 9, 2023
Support for GKE Workload Identities for Okteto Self-Hosted Feature Requests	8	919	June 1, 2022
Installing Okteto helm chart cause all outbound connections to be routed to the Ingress Okteto Self-Hosted	2	390	August 17, 2022
How Do I configure Okteto with cert-manager and Google Cloud DNS? How Do I?	1	787	September 29, 2022

AWS IAM role requirements

Related Topics