@ancient-wolf-19325 Running

aws eks describe-cluster --region <region> --name <Name-EKS-Cluster> --query "cluster.identity.oidc.issuer" --output text

gives me a sensible output. But when I try to run a script remotely, it still gives me this

failed to create a signed url. Error: WebIdentityErr: failed to retrieve credentials\ncaused by: InvalidIdentityToken: No OpenIDConnect provider found in your account 
for <https://oidc.eks.us-west-2.amazonaws.com/id/><number>

The error you're encountering suggests an issue with the OpenID Connect (OIDC) provider configuration for your EKS cluster. Ensure that the OIDC provider is correctly associated with your EKS cluster and that the IAM roles have the necessary trust relationships configured. According to source 4, you can verify the OIDC provider using the command

aws eks describe-cluster --region <region> --name <Name-EKS-Cluster> --query "cluster.identity.oidc.issuer" --output text

. Additionally, ensure that the IAM role used by your Flyte deployment has a trust relationship with the OIDC provider. Would you like more detail on how to configure the IAM roles and trust relationships? Sources: - source 4 👍 0 button 👎 0 button 💡 Hint: Mention @runllm in the thread for followups.

@crooked-vase-16428 does the above work for you?

@average-finland-92144 Not yet! Having our DevOps guy run

eksctl utils associate-iam-oidc-provider

did at least change the error message though!

Oh got it thanks for sharing. If you ever need a higher layer on top of Flyte and not having to deal with infra, there's always Union.ai 😉 Anyways, let us know how it goes and if you need help

Probably won't work (cuz again, Healthcare) - but thanks!