Service linked role #14

whyman · 2018-10-31T14:41:55Z

Hey,

If using this module on virgin account you will get an error as the service linked role doesnt exist.

To create use:

resource "aws_iam_service_linked_role" "es" {
  aws_service_name = "es.amazonaws.com"
}

The problem comes if you are trying to use the above more than once per account, you will get a conflict.

Any suggestions?

The text was updated successfully, but these errors were encountered:

newmie · 2018-11-14T06:20:19Z

There is some detailed discussion on the issue here:
hashicorp/terraform-provider-aws#5218

There is another terraform elasticsearch module and their fix was to make creation of the service-role optional:
cloudposse/terraform-aws-elasticsearch#5

Depending on your circumstances you could do a similar fix to above:

resource "aws_iam_service_linked_role" "es" {
  count = "${var.service_role_count}"
  aws_service_name = "es.amazonaws.com"
}

If like me your in a situation where you are trying to deploy a microservice and it's not appropriate for it to take ownership of creating this role, then another option is to deploy it as part of a base/platform/shared infrastructure deployment.

antonbabenko · 2019-02-17T19:15:47Z

This has been fixed in #22, use v0.7.0 to get this fixed.

antonbabenko closed this as completed Feb 17, 2019

This issue was closed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Service linked role #14

Service linked role #14

whyman commented Oct 31, 2018

newmie commented Nov 14, 2018

antonbabenko commented Feb 17, 2019

Service linked role #14

Service linked role #14

Comments

whyman commented Oct 31, 2018

newmie commented Nov 14, 2018

antonbabenko commented Feb 17, 2019