Differences between revisions 3 and 4

k8s kubernetes on AWS AWSEKS

Terraform example1 https://www.padok.fr/en/blog/aws-eks-cluster-terraform
Terraform example2 https://github.com/hashicorp/terraform-provider-aws/tree/master/examples/eks-getting-started
- 202012 - worked, only changed region and setup aws credentials.
  - Creates new VPC and 2 subnets for k8s deployment
    - Took 11min for management node to deploy
aws eks --region <region-code> update-kubeconfig --name <cluster_name>

Recover admin login

Can you see the cluster (check correct export AWS_PROFILE=)

aws eks list-clusters
# or if installed
eksctl get cluster

Make sure current role does not work by retrieveing kubectl config

aws eks update-kubeconfig --region ap-southeast-2 --name "eks-cluster-name"
kubectl get svc
error: You must be logged in to the server (Unauthorized)

AWS doc for Unauthorized or access denied (kubectl)
- https://docs.aws.amazon.com/eks/latest/userguide/troubleshooting.html#unauthorized
Have to assume the original admin account/role
- How to find the admin account / role ?
  1. install eksctl AWStool https://docs.aws.amazon.com/eks/latest/userguide/eksctl.html
  2. retrieve accounts

-  ⇤ ← Revision 3 as of 2022-02-24 22:17:59 → 
  Size: 1068
  Editor: PieterSmit
  Comment:
+   ← Revision 4 as of 2022-03-13 06:30:01 → ⇥
  Size: 1282
  Editor: PieterSmit
  Comment:
-Deletions are marked like this.
+Additions are marked like this.
 Line 11:
-. Can you see the cluster (check correct AWS_Profile) {{{
+. Can you see the cluster (check correct export AWS_PROFILE=) {{{
 Line 13:
+# or if installed
eksctl get cluster
-Line 19:
+Line 21:
+. AWS doc for '''Unauthorized or access denied (kubectl)'''
    * https://docs.aws.amazon.com/eks/latest/userguide/troubleshooting.html#unauthorized
-Line 21:
+Line 25:
-. install eksctl https://docs.aws.amazon.com/eks/latest/userguide/eksctl.html
+. install '''eksctl''' AWStool https://docs.aws.amazon.com/eks/latest/userguide/eksctl.html