Use existing target group for ALB event

AdamA · January 17, 2022, 11:08am

Hi folks

I’m trying a deploy a lambda which is to be triggered by an ALB, but I’m getting tripped up by the target group. I can’t find a way to specify an existing one, as providing a name just complains that it already exists, and when creating a new one CloudFormation fails with the following error:
API: elasticloadbalancingv2:RegisterTargets elasticloadbalancing principal does not have permission to invoke from target group

Is it possible for me to use an existing target group? If not, what is this principal I need to fix and how do I do it please? Haven’t really used AWS CLI much before.

TIA!

AdamA · January 20, 2022, 11:10am

Solution was just to add an IAM role statement to the yaml:

iamRoleStatements:
    - Effect: Allow
      Action:
        - elasticloadbalancingv2:RegisterTargets
      Resource: ${env:AWS_ALB_ARN}

Topic		Replies	Views
CloudFormation - CREATE_FAILED while using existing s3 bucket without `iam:CreateRole` Serverless Framework aws , lambda , security , cloudformation , iam	3	2508	August 3, 2023
Adding existing ElastiCache cluster to serverless.yaml Serverless Framework aws	0	723	April 7, 2022
Malformed iamRoleStatements when using Fn::GetAtt Serverless Framework aws , cloudformation , variables	0	2118	April 2, 2020
Unclear how to reference Lambda Role ARN in serverless.yml Serverless Framework aws	6	30778	November 3, 2020
Existing IAM role reuse syntax/behavior Serverless Framework	3	5383	November 14, 2016

Use existing target group for ALB event

Related Topics