karpenter-provider-aws: Cannot create identity mapping

Hello,

I’ve been having issues following the guide. Unfortunately, due to nature of my VPC I cannot use eksctl for eks cluster creation. Instead I’m using CDK construct (https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_eks-readme.html) which creates a simple EKS cluster with 1 node.

image

Any ideas? Thanks in advance.

About this issue

  • Original URL
  • State: closed
  • Created 2 years ago
  • Comments: 15 (14 by maintainers)

Most upvoted comments

Glad you sorted it out! It definitely gets a bit confusing with k8s style (level triggered reconciliation) and cfn/cdk style (edge triggered updating). If you haven’t heard about this before, there’s a great blog: https://hackernoon.com/level-triggering-and-reconciliation-in-kubernetes-1f17fe30333d

+1
ellistarn on Feb 10, 2022

Your cluster administrator or a role with access to the cluster needs to give you access for your role. These roles are configured in the aws-auth configmap. By default, the identity that created the cluster always has access.

+1
ellistarn on Feb 9, 2022
Read more comments on GitHub
← karpenter-provider-aws: karpenter.sh/initialized: true does not get applied to any Node
karpenter-provider-aws: Could not launch node, launching instances, with fleet error(s), UnauthorizedOperation: You are not authorized to perform this operation. →