Hello, We have EKS k8s cluster: fedora-ci-osci We did an upgrade for this cluster. It turned out that k8s introduced a breaking change in 1.23 version: they switched to Container Storage Interface (CSI) Therefore, all EBS PVC cannot be attached to pods.
More info:
https://docs.aws.amazon.com/eks/latest/userguide/ebs-csi.html https://docs.aws.amazon.com/eks/latest/userguide/managing-ebs-csi.html https://github.com/kubernetes-sigs/aws-ebs-csi-driver/blob/master/docs/install.md
I can install the driver, but it requires permission.
More on this: https://github.com/kubernetes-sigs/aws-ebs-csi-driver/blob/master/docs/install.md#set-up-driver-permissions
I think option #3 is the best:
Using a secret object - create an IAM user, and attach the policy to it.
Therefore, we need in the result: AWS_ACCESS_KEY_ID + AWS_SECRET_ACCESS_KEY
I do not have access to IAM.
Could you please grant me access to IAM or create a user with the assigned policy (described in the doc) ?
Thank you. I am also always accessible on Matrix as Andrei Stepanov.
Here is another doc:
https://docs.aws.amazon.com/eks/latest/userguide/csi-iam-role.html
@nb thank you for help. It works.
Metadata Update from @phsmoura: - Issue assigned to nb - Issue priority set to: Waiting on Assignee (was: Needs Review) - Issue tagged with: cloud, medium-gain, medium-trouble, ops
Done
Metadata Update from @nb: - Issue close_status updated to: Fixed - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.