Skip to content

[Bug]: One or more of the attached Amazon EBS volumes are encrypted with an inaccessible AWS KMS key. #1542

New issue
New issue
Open
Open
[Bug]: One or more of the attached Amazon EBS volumes are encrypted with an inaccessible AWS KMS key.#1542
Labels
bugSomething isn't working
@davidklett

Description

@davidklett
davidklett
opened on Jul 16, 2025

Installation method

Own AWS account

What happened?

I tried launching the stack in us-west-2, but the EC2 instance failed to launch with:

Cause: One or more of the attached Amazon EBS volumes are encrypted with an inaccessible AWS KMS key.

Resolution:
Ensure that the KMS keys are in the enabled state.
Ensure that you have the following permissions to decrypt and encrypt volumes:
"kms:CreateGrant"
"kms:Decrypt"
"kms:DescribeKey"
"kms:GenerateDataKeyWithoutPlainText"
"kms:ReEncrypt"
If the instance was launched on your behalf by another AWS service, such as Amazon EC2 Auto Scaling, ensure that the KMS key policies grant that service access to the KMS key.

Attached are screenshots.

Image Image

What did you expect to happen?

I expected the stack to at least successfully launch.

How can we reproduce it?

Try to launch the stack in us-west-2.

Anything else we need to know?

No response

EKS version

NA, didn't get to deploying EKS. Just having issues with the initial stack eks-workshop-ide

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't working

    Type

    No type

    Projects

    EKS Workshop Roadmap

    Status

    No status

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions