I’ve been trying to attempt the Level 4 AWS - 6 Deploying Containerized Applications with AWS ECS lab and I keep getting the following error when creating the Deployment Group in Code Deploy:
User: arn:aws:iam::471112716608:user/kk_labs_user_941711 is not authorized to perform: iam:PassRole on resource: arn:aws:iam::471112716608:role/admincdsrole because no identity-based policy allows the iam:PassRole action
I’ve tried this lab a number of times and seem to run into the same issue. Any help or guidance would be appreciated.
I have done that with the CodeBuild role, but with the CodeDeploy role, I have had no such luck. I have gotten Source and Build to work on the pipeline. I even checked that the ECS cluster is pulling the ECR image and can deploy the app manually. I just can’t get CodeDeploy configured on the pipeline due to permission issues. I have tried creating a role and added AWS managed policies, such as “AdministratorAccess”, to get it to work, but it doesn’t. None of the CodeDeploy policies work for me either.
What exactly is the permission error in CodePipeline? I didn’t set up any permissions for CodePipeline itself, only for CodeBuild, and the pipeline still ran successfully, and ECS worked as expected. Could you please share more details about the issue you’re facing?
