Issues with Permissions When Creating EKS via Terraform in AWS Playground

barberko1 · April 14, 2025, 10:53am

Hi everyone,

I’m trying to use the AWS Playground environment to provision an EKS cluster, but I’m running into permission issues that I can’t seem to resolve on my own.

Has anyone here successfully deployed EKS in the Playground using the UI or using Terraform?
Is there a known workaround or solution for the permission limitations in this environment?

Thanks in advance!

Santosh_KodeKloud · April 14, 2025, 11:11am

Hi @barberko1

You can refer to this guide to create an EKS cluster.

Alistair_KodeKloud · April 14, 2025, 11:41am

Or this one for terraform

barberko1 · April 21, 2025, 2:52pm

@Alistair_KodeKloud is there also a terraform guide for ecs in the playground?
have troubles with permissions there too.

Alistair_KodeKloud · April 21, 2025, 3:06pm

Currently no. I shall add it to the to-do list, but it won’t be immediate.

barberko1 · April 21, 2025, 3:22pm

so can you please guide me how can i fix an error like this?
because i cant add permissions and this resource cant work with a specific iam role

│ Error: modifying ELBv2 Listener (arn:aws:elasticloadbalancing:::listener/app/devops-alb/04e284758b7c47a5/f25f1d2a5072b457) attributes: operation error Elastic Load Balancing v2: ModifyListenerAttributes, https response error StatusCode: 403, RequestID: 274896fc-091a-4475-a5eb-5a441a9c4e73, api error AccessDenied: User: arn:aws:iam:::user/kk_labs_user_217465 is not authorized to perform: elasticloadbalancing:ModifyListenerAttributes on resource: arn:aws:elasticloadbalancing::***:listener/app/devops-alb/04e284758b7c47a5/f25f1d2a5072b457 because no identity-based policy allows the elasticloadbalancing:ModifyListenerAttributes action

barberko1 · April 28, 2025, 9:46am

@Alistair_KodeKloud

Alistair_KodeKloud · April 28, 2025, 7:52pm

The response from the AWS team is

These permissions have already been granted as a part AWS_Playground
There’s a numeric constraint on the autoscaling:MaxSize parameter - it must be less than or equal to 5, the maximum size cannot exceed 5 instances.

barberko1 · April 29, 2025, 7:58am

Thank you for your response.

However, the error seems to specifically refer to the listener of the Load Balancer, rather than the Auto Scaling configuration.

As for the Auto Scaling group, it has been preconfigured with a maximum capacity of 3 instances, and the desired capacity is set to 1.

Please let me know if there’s anything further you need from my side.

Alistair_KodeKloud · April 30, 2025, 5:11am

Are you trying to deploy ECS or EKS

If EKS, is this on a cluster built with our terraform?