Skip to content

Commit a8b7d70

Browse files
ashishranjan738ashishranjan738
authored
Adds Prometheus Write Permission to IAM Role (#355)
This commit adds Prometheus Write Permission to IAM Role for EC2 nodes. Signed-off-by: Ashish Ranjan <[email protected]>
1 parent aaf25e9 commit a8b7d70

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

substrate/pkg/controller/substrate/cluster/instanceprofile.go

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -292,6 +292,7 @@ func desiredRolesFor(substrate *v1alpha1.Substrate) []role {
292292
"arn:aws:iam::aws:policy/AmazonSSMManagedInstanceCore",
293293
"arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly",
294294
"arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
295+
"arn:aws:iam::aws:policy/AmazonPrometheusRemoteWriteAccess",
295296
},
296297
}, {
297298
// Roles and policies attached to the nodes provisioned by Karpenter
@@ -323,6 +324,7 @@ func desiredRolesFor(substrate *v1alpha1.Substrate) []role {
323324
"arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy",
324325
"arn:aws:iam::aws:policy/AmazonEKSClusterPolicy",
325326
"arn:aws:iam::aws:policy/AmazonEKSWorkerNodePolicy",
327+
"arn:aws:iam::aws:policy/AmazonPrometheusRemoteWriteAccess",
326328
},
327329
}}
328330
}

0 commit comments

Comments
 (0)