SRJ*_*SRJ 7 amazon-ebs amazon-web-services kubernetes persistent-volumes amazon-eks
我正在尝试在 AWS EKS 中使用持久卷。
我按照以下链接中提到的所有步骤进行操作
https://aws.amazon.com/premiumsupport/knowledge-center/eks-persistent-storage/
当我部署示例 Pod 来检查 PVC 是否创建良好时,出现以下错误。
Warning FailedScheduling 2m6s (x265 over 44h) default-scheduler error while running "VolumeBinding" prebind plugin for pod "app": Failed to bind volumes: timed out waiting for the condition
检查了进一步的持久卷声明
kubectl describe pvc
Warning ProvisioningFailed 62s (x7 over 3m5s) ebs.csi.aws.com_ebs-csi-controller-7cb88dcffc-vkvdk_2ae45c3c-b4f2-4200-a5d4-cfdb35a5f0db failed to provision volume with StorageClass "ebs-sc": rpc error: code = DeadlineExceeded desc = context deadline exceeded
通过查看 ebs csi 控制器的日志
I0721 10:44:10.049138 1 event.go:282] Event(v1.ObjectReference{Kind:"PersistentVolumeClaim", Namespace:"avengers", Name:"ebs-claim", UID:"88a9684c-1be7-412f-8616-b662eff692df", APIVersion:"v1", ResourceVersion:"19320908", FieldPath:""}): type: 'Warning' reason: 'ProvisioningFailed' failed to provision volume with StorageClass "ebs-sc": rpc error: code = Internal desc = WebIdentityErr: failed to retrieve credentials
caused by: InvalidIdentityToken: No OpenIDConnect provider found in your account for https://oidc.eks.us-east-2.amazonaws.com/id/XXXXXXXXXXXX34FDCBXXXXX
status code: 400, request id: 90b430ba-6999-41d8-ac15-13f5ec73def2
I0721 10:44:45.207103 1 controller.go:1332] provision "default/ebs-claim" class "ebs-sc": started
I0721 10:44:45.207406 1 event.go:282] Event(v1.ObjectReference{Kind:"PersistentVolumeClaim", Namespace:"default", Name:"ebs-claim", UID:"3922ab97-483a-486a-bbbd-57875e506021", APIVersion:"v1", ResourceVersion:"19875393", FieldPath:""}): type: 'Normal' reason: 'Provisioning' External provisioner is provisioning volume for claim "default/ebs-claim"
I0721 10:44:55.207594 1 controller.go:1106] Temporary error received, adding PVC 3922ab97-483a-486a-bbbd-57875e51 to claims in progress
W0721 10:44:55.207639 1 controller.go:958] Retrying syncing claim "3922ab97-483a-486a-bbbd-57875e506021", failure 9
E0721 10:44:55.207664 1 controller.go:981] error syncing claim "3922ab97-483a-486a-bbbd-57875e506021": failed to provision volume with StorageClass "ebs-sc": rpc error: code = DeadlineExceeded desc = context deadline exceeded
I0721 10:44:55.207859 1 event.go:282] Event(v1.ObjectReference{Kind:"PersistentVolumeClaim", Namespace:"default", Name:"ebs-claim", UID:"3922ab97-483a-486a-bbbd-57875e506021", APIVersion:"v1", ResourceVersion:"19875393", FieldPath:""}): type: 'Warning' reason: 'ProvisioningFailed' failed to provision volume with StorageClass "ebs-sc": rpc error: code = DeadlineExceeded desc = context
我在这里错过了什么?
任何帮助将不胜感激。
SRJ*_*SRJ 12
从错误日志中,选择要搜索的 id,即XXXXXXXXXXXX34FDCBXXXXX
caused by: InvalidIdentityToken: No OpenIDConnect provider \nfound in your account for \nhttps://oidc.eks.us-east-2.amazonaws.com/id\n/XXXXXXXXXXXX34FDCBXXXXX\nstatus code: 400, request id: 90b430ba-6999-41d8-ac15-13f5ec73def2\n\n当前 EKS 集群不存在 IAM OIDC (OpenID Connect) 身份提供程序\xe2\x80\x99。
\naws iam list-open-id-connect-providers | grep XXXXXXXXXXXX34FDCBXXXXX\n什么也没返回。
\n在现有 EKS 集群中启用 OIDC IAM:
\n$ eksctl utils associate-iam-oidc-provider --cluster=eks-lab --region us-east-2 --approve\n删除所有内容并重新部署,现在工作正常。
\n参考。
\n| 归档时间: |
|
| 查看次数: |
34789 次 |
| 最近记录: |