City:
Your city
- RAISA & SIKDAR TOWER
- 3/8, Level -7, North Pirerbag
- 60 Feet Main Road
- Mirpur, Dhaka 1216
- +880-152-4736500
- maruf@informatics.systems
ERP Software
Mobile Apps
eCommerce
Cloud Hosting
Shared Hosting
Infrastructure
Virtual Private Server 
Dedicated Server 
WordPress Hosting
Add-ons
Knowledgebase
CloudFormation drift detection issues.
10/09/2023
AWS CloudFormation drift detection allows you to detect and compare any differences between the desired (template) and actual (deployed resources) stack resources. Here are some common issues related to CloudFormation drift detection and how to address them:
- Drift Detection Not Supported:
- Issue: Drift detection is not available for certain resource types or stack configurations.
- Solution:
- Check AWS documentation to verify if drift detection is supported for the specific resource types in your stack.
- Stack Update in Progress:
- Issue: You're unable to perform drift detection because the stack is currently being updated.
- Solution:
- Wait until the stack update is complete before initiating drift detection.
- Insufficient IAM Permissions:
- Issue: The IAM user or role doesn't have the necessary permissions to perform drift detection.
- Solution:
- Ensure that the IAM entity performing the drift detection has the
cloudformation:DetectStackDriftpermission on the stack.
- Ensure that the IAM entity performing the drift detection has the
- Stack Not in Usable State:
- Issue: The stack is in a state that doesn't allow drift detection (e.g., DELETE_COMPLETE, ROLLBACK_COMPLETE).
- Solution:
- Ensure that the stack is in a usable state (e.g., CREATE_COMPLETE, UPDATE_COMPLETE) before attempting drift detection.
- Resource Exclusion Issues:
- Issue: You want to exclude specific resources from drift detection, but they're still being included.
- Solution:
- Verify that the resource exclusion is correctly specified in the drift detection request. Double-check the resource identifiers and types.
- Drift Detection Timing Out:
- Issue: Drift detection is timing out before completion.
- Solution:
- If your stack has a large number of resources, consider adjusting the timeout settings or breaking down the drift detection into smaller operations.
- Stack Doesn't Have Drift Detection Enabled:
- Issue: Drift detection was not enabled when the stack was created or updated.
- Solution:
- You can enable drift detection by updating the stack and setting
EnableDriftDetectionto true in the stack'sAWS::CloudFormation::Stackresource.
- You can enable drift detection by updating the stack and setting
- Stack Drift Status Stale:
- Issue: The drift status appears stale or incorrect.
- Solution:
- Try refreshing the drift status by using the
describe-stack-resource-driftscommand.
- Try refreshing the drift status by using the
- False Positives:
- Issue: Drift detection is reporting differences that are not actually a problem.
- Solution:
- Review the reported drift results carefully. It's possible that some differences are expected due to resource dependencies or other factors.
- Logs and Notifications:
- Issue: Lack of logs and notifications makes it hard to identify drift detection issues.
- Solution:
- Monitor the CloudWatch Logs associated with CloudFormation for any drift detection-related events or errors.
Remember to review the AWS documentation for specific CloudFormation drift detection details and best practices. Additionally, using CloudWatch Logs and Metrics can help in troubleshooting drift detection issues.
Comments
No posts found
Write a review