Reputation: 1096
Missing container attribute
I am running EC2 instance with RancherOS ECS-enabled AMI v1.0.4 in ECS cluster.
The instance joins cluster, but ECS tasks are failing to start because container instance is missing an attribute required by the task.
The ECS task that is failing to start has IAM role and requires com.amazonaws.ecs.capability.task-iam-role attribute. After checking which attributes the container instance has (using cli aws ecs describe-container-instances), it can be seen that this required attribute is missing.
When I remove IAM role from the task, it starts fine.
When I run instance with Amazon ECS-optimized AMI everything works fine.
I followed official RancherOS ECS guide, including verifying ECS Container Instance IAM Role, without success.
Upvotes: 2
Views: 2370
Answers (1)
Reputation: 1096
After looking in the source code of ECS agent, it became apparent that by default this functionality is disabled.
In order to enable it environment variable ECS_ENABLE_TASK_IAM_ROLE should have value true.
Adding it to cloud-config file does the job:
#cloud-config
rancher:
environment:
ECS_ENABLE_TASK_IAM_ROLE: true
Upvotes: 6
Related Questions
- ECS Error: "The closest matching container-instance is missing an attribute required by your task"
- Essential container in task exited
- The container does not exist in the task definition
- AWS EC2 ECS No Container Instances were found in your cluster
- unable to place a task because no container instance met all of its requirements
- Problem with setting a service in AWS ECS
- ECS invalid reference format error
- No Container Instances were found in your cluster
- Amazon ECS error: cannot create a task definition with no containers
- Amazon ECS "the referenced cluster was inactive"