更新时间:2022-11-06 21:14:51
尚无答案...这是我的工作方式,我不得不将Node Role的知识添加到Pod Execution角色的信任策略中.
在我的情况下,Pod执行角色为prod-airflow-logs
,而节点角色为eksctl-prod-eks-nod-NodeInstanceRole-D4JQ2Q6D9GDA
.
No answer yet... Here is how I made this work, I had to add the arn of Node Role into the trust policy of Pod Execution role.
In my case, the Pod execution role is prod-airflow-logs
and the Node Role is eksctl-prod-eks-nod-NodeInstanceRole-D4JQ2Q6D9GDA
.
Pod执行的信任关系必须如下;
The trust relationship of Pod execution has to be as follows;
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::XXXXXXX:role/eksctl-prod-eks-nod-NodeInstanceRole-D4JQ2Q6D9GDA"
},
"Action": "sts:AssumeRole"
}
]
}