stackoom
  简体   繁体   中英

AWS X-RAY [Error] Sending segment batch failed with: NoCredentialProviders: no valid providers in chain. Deprecated

 原文  2020-12-03 03:13:12       amazon-web-services/ web-services/ distributed-tracing/ x-ray

Question

I'm using X-Ray Daemon with Fargate. Unfortunately in the logs of the daemon I see errors like:

[Error] Sending segment batch failed with: NoCredentialProviders: no valid providers in chain. Deprecated. For verbose messaging see aws.Config.CredentialsChainVerboseErrors Warn] Delaying sending of additional batches by 0 seconds

AWS X-Ray works with IAM: permission: AWSXrayFullAccess

I already checked:

{
 "name" : "xray-daemon",
 "image" : "amazon/aws-xray-daemon",
 "user" : "1337",
 "essential" : true,
 "cpu" : "32",
 "memoryReservation" : "256",
 "portMappings" : [
 {
 "containerPort" : 2000,
 "protocol" : "udp"
 }
 ]
 }
 ],
 "requiresCompatibilities" : [ "FARGATE" ],
 "taskRoleArn" : "arn:aws:iam::123456789012:role/ecsTaskRole",
 "executionRoleArn" : "arn:aws:iam::123456789012:role/ecsTaskExecutionRole",
 "networkMode" : "awsvpc"
}

3 answers

solution1
 0  2021-08-20 23:55:07

You should check you role permissions role, I used the same for execution & taskRoleArn. my role contained these policies

  • arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly
  • arn:aws:iam::aws:policy/CloudWatchAgentServerPolicy
  • arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy
  • arn:aws:iam::aws:policy/AWSXRayFullAccess

and also check trust relationships for role. my used:

  • ecs-tasks.amazonaws.com
  • ecs.amazonaws.com
  • c2.amazonaws.com

solution2
 0  2022-04-02 01:20:27

I got this error when my version of the x-ray deamon was old.

Follow this as guidance to update your x-ray deamon if it is running on ECS:

https://docs.aws.amazon.com/xray/latest/devguide/xray-daemon-ecs.html

solution3
 0  2022-09-16 07:54:05

XRay daemon is missing credentials needed to authenticate with XRay server. You can pass credentials to XRay daemon in several ways, but the most common are:

  1. through environment variables AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY
  2. through ~/.aws/credentials file (see https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-files.html )

I'm guessing option 1 will be easier with fargate.

Of course you need to generate the key in IAM, see: https://docs.aws.amazon.com/powershell/latest/userguide/pstools-appendix-sign-up.html

The user you'll create the access key for will need to have permissions to use XRay (AWSXrayFullAccess should do).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question NoCredentialProviders: no valid providers in chain. Deprecated. (DNSControl) S3 on EC2 with IAM: Error NoCredentialProviders: no valid providers in chain. Deprecated Getting Error 'NoCredentialProviders: no valid providers in chain. Deprecated.' while calling acmpca.GetCertificate() in golang Error: NoCredentialProviders: no valid providers in chain. Deprecated. error with dehydrated tool Amazon SQS:: Got an error while trying to create queue: NoCredentialProviders: no valid providers in chain. Deprecated AWS Cloudwatch logs with Docker Container - NoCredentialProviders: no valid providers in chain Error when using AWS-SDK-GO (NoCredentialProviders: no valid providers in chain) NoCredentialProviders: no valid providers in chain error in electron-updater with AWS S3 Error: FATAL NoCredentialProviders: no valid providers in chain caused by: EnvAccessKeyNotFound: Error registering: NoCredentialProviders: no valid providers in chain ECS agent error
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM