By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

EKS Nodes not showing

0

I've created a EKS Cluster v1.27 (i've testes with 1.27 and 1.26), through Terraform, at end of the process, the AWS EKS Compute tab does not show any nodes, I'm root of the Account (to exclude permission errors), and when I connect in the EKS Cluster via kubectl and eksctl, I can see the nodes there, (there's no error with nodes join the cluster), I'm able to restore backups and so on, but, I can't find the error, the policies required, was attached at creation time, the scaling works fine during the restore time, anyone knows that? The Cluster created, with no errors

Through different CLI's, I have the nodes Ready. But in webUI above, nothing

Topics
ContainersCompute
Tags
Amazon Elastic Kubernetes ServiceTerraformKubernetes
Language
English
Ellipsis_
asked 10 months ago2952 views
2 Answers
1

The first person or role that creates the EKS cluster is the system administrator.

I am going to assume your terraform AWS provider is using its own IAM access key or role in the account. If you use the same Role/Access Keys as TF is using, im 99% sure you will see everything thats missing

Even if you’re an IAM full administrator in the AWS account you will not be able to see the cluster fully.

You need to grant access as the system administrator to other IAM principles. This should resolve your issue.

https://docs.aws.amazon.com/eks/latest/userguide/add-user-role.html

When you create an Amazon EKS cluster, the IAM principal that creates the cluster is automatically granted system:masters permissions in the cluster's role-based access control (RBAC) configuration in the Amazon EKS control plane. This principal doesn't appear in any visible configuration, so make sure to keep track of which principal originally created the cluster. To grant additional IAM principals the ability to interact with your cluster, edit the aws-auth ConfigMap within Kubernetes and create a Kubernetes rolebinding or clusterrolebinding with the name of a group that you specify in the aws-auth ConfigMap

profile picture
EXPERT
Gary Mclean
answered 10 months ago
  • Gary Mclean EXPERT
    10 months ago

    Please accept this answer if it resolved your issue. It helps me and others with the same issue.

0

Thanks, after applying the maprole in aws-auth, masters of kubernetes for the role of iam, It showing the nodes in aws console.

Ellipsis_
answered 10 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content