Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Michael Levan 👨🏻‍💻☕️ Profile picture
@TheNJDevOpsGuy
Dec 1, 2022 7 tweets 3 min read Read on X
Scrolly
If you have an EKS cluster, that EKS cluster will have an IAM Role associated with it.

Ensure that the Role has all permissions needed.

For example, if you need to create Volumes for k8s, it'll need the following Policy Attachment.

How did I find this out?

#kubernetes #AWS Image
First, I tried to create a PVC and noticed that it was in a Pending state Image
Next, I described the PVC to see what was going on and I saw this.

`kubectl describe pvc name_of_pvc -n namespace_name` Image
I saw that I wasn't authorized to do something, but it didn't tell me "what". Then, I noticed there was the authorization encryption code.

So I decoded it with the following command

`aws sts decode-authorization-message --encoded-message encryption_code_here` Image
After that, I was able to see the ACTUAL error Image
I then went into AWS IAM and searched for the IAM policies for volumes. I looked at the JSON and saw exactly what I needed Image
And just like that, I was good to go! Image

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Michael Levan 👨🏻‍💻☕️

Michael Levan 👨🏻‍💻☕️ Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @TheNJDevOpsGuy

Michael Levan 👨🏻‍💻☕️ Profile picture
Jul 22, 2023
My predictions in Kubernetes and Platform Engineering for the next 5-7 years 👇🏻
✅ Kubernetes

I spoke to a few colleagues in various roles and based on my research combined with my experience, I believe Kubernetes has a solid 3-4 years left in the tank before it’s just there in the background and no one cares about it.

But then what’s next?
✅ Platform Engineering

I believe in a year or so platform engineering will be in full once it’s actually defined properly.

For example - A lot of folks say that it’s all about creating IDPs, but CNCF says otherwise… so there’s a mix in what it actually is right now.
Read 5 tweets
Michael Levan 👨🏻‍💻☕️ Profile picture
Feb 27, 2023
What are the 50 Kubernetes concepts that you should know?

Well, I like to break them down into three sections:
- Day Zero
- Day One
- Day Two

A thread 🧵
Day Zero is all about the planning and architecture phase. How will your environment look?
Day One is all about the deployment phase. Deploy your clusters and ensure that the process is repeatable.
Read 5 tweets
Michael Levan 👨🏻‍💻☕️ Profile picture
Feb 25, 2023
Kubernetes isn't something that you just "turn on" and walk away.

It's a platform that has to be considered a main part of how you deploy.

But how?

A thread 🧵
It should be looked at no different than when you began to implement VMWare on bare metal or the cloud in your environment.

Kubernetes can't be something that's just on the back burner and implemented with 10% capacity. You have to think about:
✅ What the future of the environment will look like

✅ How you'll plan upgrades

✅ What your backup and disaster recovery plan is

✅ How you're going to move platforms/environments (for example - AWS to Azure) if you need to
Read 4 tweets
Michael Levan 👨🏻‍💻☕️ Profile picture
Dec 1, 2022
So... what is Kubernetes?

As Kubernetes continues to gain popularity, engineers have to know how Kubernetes works, and why it might make sense in their environment.

A thread 🧵
Here are a few questions that you should ask yourself

- What benefits does Kubernetes bring to environments?
- What do technologies like containerization do for organizations?
- Does Kubernetes actually help teams?
In this blog post, I’ll provide some basic background on containers and Kubernetes.

Also, some suggestions for how to think about Kubernetes for infrastructure pros.
Read 4 tweets
Michael Levan 👨🏻‍💻☕️ Profile picture
Nov 30, 2022
Are you using Ingress Controllers in your Kubernetes environment?

If not, let's break down what they are.

A thread 🧵
At a high level, Ingress Controllers are:
- Specify multiple paths
- Specify multiple services

All in one load balancer.

Let's break it down.
ingress Controllers are just like any other Controller in a Kubernetes environment. They confirm that the current state is the desired state for the deployment.
Read 7 tweets
Michael Levan 👨🏻‍💻☕️ Profile picture
Nov 23, 2022
Role Based Access Control (RBAC) is arguably one of the biggest headaches for engineers in a Kubernetes cluster.

However, there are certain ways to make it far easier.

A thread 🧵
Before jumping into that, let's talk about RBAC.

When you're trying to access a Kubernetes cluster and perform an action, it takes two roles:

- Authentication
- Authorization
Authentication gets you into the cluster. Authorization allows you to perform a certain action in a cluster.
Read 7 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(