check for encryption is not set up on the selected CloudWatch Logs log group #79
Description
no errors in the script, but I can't connect with execute-command:
The Session Manager plugin was installed successfully. Use the AWS CLI to start a session.
Starting session with SessionId: ecs-execute-command-f2rxcq6as4envg6h3xxxx
This session is encrypted using AWS KMS.
SessionId: ecs-execute-command-f2rxcq6as4envg6h3pjxxxx : We couldn't start the session because encryption is not set up on the selected CloudWatch Logs log group. Either encrypt the log group or choose an option to enable logging without encryption.
In my situation, adding the "CloudWatchAgentServerPolicy" policy was enough to fix the issue