Gruntwork
-
|
We recently had our RA deployed and I am attempting to add users, but when running terragrunt apply I get an error: Remote state S3 bucket xxxx-us-east-1-tf-state does not exist or you don't have permissions to access it. Would you like Terragrunt to create it? (y/n) The bucket does exist. I've configured aws-vault and am able to authenticate using commands like: aws-vault exec dev --no-session -- aws sts get-caller-identity Is there a way to tell what role or user Terragrunt is assuming when executing these commands? |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments
-
|
I think I figured out what happened here - I did not properly authenticate with the CLI. I needed to call: aws-vault exec security I think it would be helpful if this was called out in the documentation more explicitly, because the documentation doesn't mention it. Incidentally, there is a small chronological error in the documentation in that section - it suggests running Otherwise the documentation is great, just leaving this behind in case anyone else encounters it. |
Beta Was this translation helpful? Give feedback.
I think I figured out what happened here - I did not properly authenticate with the CLI. I needed to call:
aws-vault exec security
I think it would be helpful if this was called out in the documentation more explicitly, because the documentation doesn't mention it.
Incidentally, there is a small chronological error in the documentation in that section - it suggests running
aws-vault add securitybefore adding new profiles for each of the accounts to ~/.aws/config. I believe you need to add the profiles first.Otherwise the documentation is great, just leaving this behind in case anyone else encounters it.