EKS Cluster with Window Node


I am trying to add vpc controller and vpc webhook for my window worker node in eks cluster. I am using this command (eksctl utils install-vpc-controllers --cluster test-cluster --approve) for the creation of vpc controller and vpc webhook. I am getting the below error and vpc controller is being created but vpc webhook is not creating at all. Error: error installing VPC controller: creating CertificateSigningRequest: constructing REST client mapping for certificates.k8s.io/v1beta1, Kind=CertificateSigningRequest: no matches for kind "CertificateSigningRequest" in versions ["certificates.k8s.io/" "certificates.k8s.io/v1beta1"]

Please look into this as I am having trouble from this in my networking configurations further.

1 Answer

The error indicates that the VPC webhook is failing to create due to an issue with CertificateSigningRequest resources.

  • Verify that the Kubernetes API server has access to create CertificateSigningRequest resources. This requires the certificates.k8s.io API group to be enabled.
  • Check that the IAM role used by the control plane has permissions to create CertificateSigningRequest resources. It needs permissions for the certificates.k8s.io API group.
  • Search the AWS documentation for information on troubleshooting CertificateSigningRequest creation errors. This could provide more context on the specific error.
  • Try re-running the eksctl command to install the VPC controllers and see if the error persists or provides more details.
  • As a test, try creating the cluster without a VPC endpoint first to isolate if the issue is specific to the endpoint creation.
profile picture
answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions