Differences between revisions 1 and 4 (spanning 3 versions)

k8s kubernetes on AWS AWSEKS

Terraform example1 https://www.padok.fr/en/blog/aws-eks-cluster-terraform
Terraform example2 https://github.com/hashicorp/terraform-provider-aws/tree/master/examples/eks-getting-started
- 202012 - worked, only changed region and setup aws credentials.
  - Creates new VPC and 2 subnets for k8s deployment
    - Took 11min for management node to deploy
aws eks --region <region-code> update-kubeconfig --name <cluster_name>

Recover admin login

Can you see the cluster (check correct export AWS_PROFILE=)

aws eks list-clusters
# or if installed
eksctl get cluster

Make sure current role does not work by retrieveing kubectl config

aws eks update-kubeconfig --region ap-southeast-2 --name "eks-cluster-name"
kubectl get svc
error: You must be logged in to the server (Unauthorized)

AWS doc for Unauthorized or access denied (kubectl)
- https://docs.aws.amazon.com/eks/latest/userguide/troubleshooting.html#unauthorized
Have to assume the original admin account/role
- How to find the admin account / role ?
  1. install eksctl AWStool https://docs.aws.amazon.com/eks/latest/userguide/eksctl.html
  2. retrieve accounts

-  ⇤ ← Revision 1 as of 2020-12-13 08:41:16 → 
  Size: 104
  Editor: PieterSmit
  Comment:
+   ← Revision 4 as of 2022-03-13 06:30:01 → ⇥
  Size: 1282
  Editor: PieterSmit
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 1:
-Describe k8s/AwsEks here.
+= k8s kubernetes on AWS AWSEKS =
 * Terraform example1 [[https://www.padok.fr/en/blog/aws-eks-cluster-terraform]]
 * Terraform example2 [[https://github.com/hashicorp/terraform-provider-aws/tree/master/examples/eks-getting-started]]
   * 202012 - worked, only changed region and setup aws credentials.
     * Creates new VPC and 2 subnets for k8s deployment
       * Took 11min for management node to deploy
 * aws eks --region <region-code> update-kubeconfig --name <cluster_name>
-Line 3:
+Line 9:
- * aws eks --region <region-code> update-kubeconfig --name <cluster_name>
+== Recover admin login ==
 1. Can you see the cluster (check correct export AWS_PROFILE=) {{{
aws eks list-clusters
# or if installed
eksctl get cluster
}}}
 1. Make sure current role does not work by retrieveing kubectl config {{{
aws eks update-kubeconfig --region ap-southeast-2 --name "eks-cluster-name"
kubectl get svc
error: You must be logged in to the server (Unauthorized)
}}}
 1. AWS doc for '''Unauthorized or access denied (kubectl)'''
    * https://docs.aws.amazon.com/eks/latest/userguide/troubleshooting.html#unauthorized
 1. Have to assume the original admin account/role
    * How to find the admin account / role ?
      1. install '''eksctl''' AWStool https://docs.aws.amazon.com/eks/latest/userguide/eksctl.html
      2. retrieve accounts {{{


}}}