migrate-to-pod-identity
fails with "Association already exists"
#7753
Labels
migrate-to-pod-identity
fails with "Association already exists"
#7753
When running
eksctl utils migrate-to-pod-identity --approve
without the--remove-oidc-provider-trust-relationship
flag, eksctl adds a new trust relationship for thepods.eks.amazonaws.com
principal without removing the service account's role annotation, but a subsequent rerun causes it to fail with this error:Sample config:
Steps to reproduce
eksctl utils migrate-to-pod-identity -f cluster.yaml --approve
eksctl utils migrate-to-pod-identity -f cluster.yaml --approve
againThe text was updated successfully, but these errors were encountered: