Is there a way to add IAM user to loki?

milosroknic · September 3, 2020, 12:00pm

Hello guys
I’m trying to add IAM user to loki stack, so loki can use permissions configured for that IAM user.
We have EKS cluster and I’ve deployed loki and promtail with helm chart. The problem is that loki pod cant create dynamo db table. With kubectl logs I saw which role loki pod try to use and I’ve add a policy to that role and that works now. But I don’t want to add permissions to role which is created by EKS cluster ( with terraform ). So if any has some idea, please write.
Thanks in advance.

Milos

lmickh · November 21, 2020, 3:16pm

I would suggest using Kubernetes serviceaccounts with IAM role annotations if you are using EKS. It works well. See the docs linked below.

Topic		Replies	Views
Using an IAM Role instead of IAM User? Grafana Loki loki , aws	6	1404	January 30, 2024
S3 Terraform Documentation has EKS prerequisite Grafana Loki	0	178	April 3, 2024
Loki S3 Backend Storage Configuration Grafana Loki templating , loki	1	234	March 22, 2025
Loki integration with S3 for using ServiceAccount on K8s Grafana Loki	1	1352	November 18, 2022
How can we correctly configure Loki helm values file when using IRSA to access s3 bucket? Grafana Loki	1	1502	March 25, 2023

Is there a way to add IAM user to loki?

Related topics