amazon ec2 - Unable to create EC2 when subnet is used via Ansible(same works through AWS-CLI) -

-

i trying create ec2 instance using ansible. if try without subnet(and default security group), works perfect , creates ec2. not want. want create instance using specific 'sg' , using subnet that's existing(defined organization).

same subnet , 'sg' works fine when using aws-cli(and via console too), same profile, same image, same key , same instance type. creates instance under subnet , assigns sg passed in command - perfect!! can rule out access/role related issues here(as cli/console works fine)? if so, else issue can ansible/boto?

aws cli:

aws ec2 run-instances --image-id ami-3d401234 --count 1 --instance-type t2.large --region us-east-1 --key-name mykeynamehere --security-group-ids sg-766b1234 --subnet-id subnet-09871234 --profile myprofilenamehere

here playbook. 

 - name: provision ec2 node     hosts: local     connection: local     gather_facts: false     tags: provisioning     vars:       instance_type: t2.large       image: ami-3d401234       group_id: sg-766b1234       region: us-east-1       keypair: mykeynamehere       vpc_subnet_id: subnet-09871234      tasks:       - name: launch new instance         local_action: ec2 instance_tags="name=myinstance"                       instance_type={{ instance_type}}                       image={{ image }}                       wait=true                       group_id={{ group_id }}                       profile=myprofilenamehere                       region={{ region }}                       vpc_subnet_id={{ vpc_subnet_id }}                       keypair={{ keypair }}         register: ec2

and here error, not sure why 401 again(got earlier when profile not mentioned in playbook). sure access , secret keys correct because able create default sg.

    vpc_id = vpc.get_all_subnets(subnet_ids=[vpc_subnet_id])[0].vpc_id   file "/library/python/2.7/site-packages/boto-2.38.0-py2.7.egg/boto/vpc/__init__.py", line 1153, in get_all_subnets     return self.get_list('describesubnets', params, [('item', subnet)])   file "/library/python/2.7/site-packages/boto-2.38.0-py2.7.egg/boto/connection.py", line 1186, in get_list     raise self.responseerror(response.status, response.reason, body) boto.exception.ec2responseerror: ec2responseerror: 401 unauthorized <?xml version="1.0" encoding="utf-8"?> <response><errors><error><code>authfailure</code><message>aws not able validate provided access credentials</message></error></errors><requestid>6182f17d-f62e-4d57-b351-3498dc8a53b7</requestid></response>

and have access key , secret key information in ~/.boto file. aws_access_key_id , aws_secret_access_key. no iam role information, etc.

this missing in boto, aws_security_token. never thought needed passing access , secret keys. guess needed given access part of organization group? added , works now. @hellov making me check differences again comment :-)


Comments

Post a Comment

Popular posts from this blog

javascript - Chart.js (Radar Chart) different scaleLineColor for each scaleLine -

-
Image
i try , create radar chart using chart.js has various colours each scaleline, or coloured between scalelines. wondering if possible? from: to: i have working graph, though there doesn't seem method change individual scale lines. kind regards leigh you can extend radar chart type this, so chart.types.radar.extend({ name: "radaralt", initialize: function (data) { chart.types.radar.prototype.initialize.apply(this, arguments); var originalscaledraw = this.scale.draw; var ctx = this.chart.ctx; this.scale.draw = function () { var linewidth = this.linewidth; // bypasses line drawing in originalscaledraw this.linewidth = linewidth; originalscaledraw.apply(this, arguments); ctx.linewidth = this.linewidth; var scale = this; // draw chart.helpers.each(scale.ylabels, function (label, index) { // color of ...
Read more

apache - Error with PHP mail(): Multiple or malformed newlines found in additional_header -

-
suddenly have started receiving above error without changes having been made script. host 1and1 (i know...) the script still works fine on different server, , suspicion there must have been server config change has lead this, although hosts plead ignorance. there's no information on above error @ in google can find - have ideas? server running apache if helps. had similar problem. came out of blue. no php code changed. what changed: php upgraded 5.5.25-1 5.5.26. a security risk in php mail() function has been fixed , newlines in additional_headers allowed no more. because newlines mean: starts email message (and surely don't want inject newlines through headers followed evil message). what have worked fine, e.g. having newlines after headers or passing whole message additional_headers , function no more. solution : sanitize headers. no multiple newlines in additional_headers argument. these count "multiple or malformed newlines":...
Read more

android - Go back to previous fragment -

-
btw second fragment. appear once press button in first fragment. in fragment, if press button on phone, go previous fragment. need guys. in advance. public class listalldoctorfragment extends fragment { button close; @nullable @override public view oncreateview(layoutinflater inflater, viewgroup container, bundle savedinstancestate) { view view = inflater.inflate(r.layout.listalldoctor, container,false); close = (button) view.findviewbyid(r.id.button); close.setonclicklistener(new view.onclicklistener() { @override public void onclick(view view) { android.app.fragmentmanager fm = getfragmentmanager(); fragmenttransaction ft = fm.begintransaction(); shit f2 = new shit(); ft.add(r.id.content_frame, f2); ft.addtobackstack(null); ft.commit(); } }); return view; } } assuming want g...
Read more