Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document VPC based ES clusters #7181

Merged
merged 1 commit into from
Jan 25, 2019
Merged

Document VPC based ES clusters #7181

merged 1 commit into from
Jan 25, 2019

Conversation

tomelliff
Copy link
Contributor

It's necessary to have already created the elasticsearch.amazonaws.com service linked role before attempting to create a VPC based ES cluster.

This can either be done separately from the ES cluster creation (useful if you have multiple ES clusters in an AWS account because the service linked role can only be created once) or the aws_elasticsearch_domain resource needs to wait for it to be created by using depends_on.

See the discussion on #5218 for more information.

@tomelliff
Document VPC based ES clusters
59ceb40 
It's necessary to have already created the elasticsearch.amazonaws.com service linked role before attempting to create a VPC based ES cluster.

This can either be done separately from the ES cluster creation (useful if you have multiple ES clusters in an AWS account because the service linked role can only be created once) or the aws_elastcisearch_domain resource needs to wait for it to be created by using depends_on.

See the discussion on hashicorp#5218 for more information.
@ghost ghost added size/M Managed by automation to categorize the size of a PR. service/elasticsearch Issues and PRs that pertain to the elasticsearch service. documentation Introduces or discusses updates to documentation. labels Jan 17, 2019
bflad
bflad approved these changes Jan 25, 2019
View reviewed changes
Copy link
Contributor

@bflad bflad left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks, @tomelliff! 🚀

@bflad bflad added this to the v1.57.0 milestone Jan 25, 2019
@bflad bflad merged commit 22a4316 into hashicorp:master Jan 25, 2019
stantonk
stantonk reviewed Jan 26, 2019
View reviewed changes
website/docs/r/elasticsearch_domain.html.markdown
}

resource "aws_iam_service_linked_role" "es" {
aws_service_name = "elasticsearch.amazonaws.com"
Copy link

@stantonk stantonk Jan 26, 2019
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i'm not sure this is correct? i get this error:

aws_iam_service_linked_role.es: Error creating service-linked role with name elasticsearch.amazonaws.com: AccessDenied: elasticsearch.amazonaws.com is not a valid AWS service name (Service Principal)
	status code: 403

the docs here say it should be es.amazonaws.com ?

@ghost
Copy link

ghost commented Apr 1, 2020

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!

@ghost ghost locked and limited conversation to collaborators Apr 1, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@stantonk stantonk stantonk left review comments

@bflad bflad bflad approved these changes

Assignees
No one assigned
Labels
documentation Introduces or discusses updates to documentation. service/elasticsearch Issues and PRs that pertain to the elasticsearch service. size/M Managed by automation to categorize the size of a PR.
Projects
None yet
Milestone
v1.57.0
Development

Successfully merging this pull request may close these issues.
3 participants
@tomelliff @bflad @stantonk