not fairly CloudFormation can’t replace a stack when a custom-named useful resource requires changing | by Teri Radichel | Bugs That Chew | Oct, 2022 will lid the newest and most present help virtually the world. get into slowly subsequently you comprehend capably and accurately. will addition your information effectively and reliably

Ought to CloudFormation deal with this downside robotically within the background?

I added a buyer managed prefix record to a safety group after which began getting this error message:

CloudFormation can't replace a stack when a custom-named useful resource requires changing

It is a very unusual error message for me. What precisely is a {custom} named useful resource? I give a reputation to many sources that I create with CloudFormation. What makes one thing a “{custom} named useful resource” as an alternative of another useful resource, I merely give it a reputation.

It isn’t even clear on this case that the prefix record is the issue, however I assume it’s, as a result of that is the one factor I modified or added to this safety group.

I am undecided why the prefix record requires alternative both. Or is it the safety group that requires alternative as a result of it is utilizing a listing of prefixes?

What I ponder on this case is why CloudFormation cannot deal with this downside for the shopper. No matter is inflicting this isn’t very clear to me and it looks as if it might be dealt with within the backend.

The opposite factor is that this error message tells me to “rename” my safety group. That is the identify I would like for my safety group. If I rename my present safety group, I will have a bizarre safety group hanging round that I do not want or need. If I write any automated code, it would simply hold creating increasingly more safety teams. Would not it make extra sense to delete the safety group, or can CloudFormation create a brand new one? Or ought to I rename the useful resource, run the code, after which run it once more with the brand new identify?

I additionally discovered this put up, however it’s not that useful by way of answering my questions. It additionally says to rename the useful resource.

Right here is the subsequent downside… I attempted to take away the sources associated to this error.

First I attempted to take away the safety group:

However it will probably’t be deleted due to the principles:

So I’ve to take away these as effectively:

And… now my useful resource is caught in “Delete in progress state”

He is been sitting that approach for fairly a while.

I later realized that though I used to be caught in that state, I used to be capable of click on on the useful resource and the occasion record has an error code:


Sadly it does not say which dependency, however I am assuming it is my EC2 occasion. So you may delete this group after which add it again to the EC2 occasion later. Sure, that works. As quickly as I deleted the safety group from my occasion, the useful resource was deleted.

Hopefully somebody at AWS reads this and sees how painful this error is.

I do not totally perceive what’s inflicting this error. I want it was clearer, however what I actually want is for AWS CloudFormation to simply deal with it correctly. It feels like AWS CloudFormation might change the useful resource identify in a transaction after which change it again to what it is alleged to be if that is what must occur right here. AWS might additionally briefly take away the SG from the pool and take away and re-add it. Higher but, clear up the issue in a approach that does not have an effect on the safety group or EC2 occasion, simply the principles, as a result of that is the one factor that is altering in my case.

These are the sorts of issues that make deployments in cloud environments troublesome.

Teri Radichel

For those who like this story please applaud and proceed:

Medium: Teri Radichel or E mail Checklist: Teri Radichel
Twitter: @teriradichel or @2ndSightLab
Requests providers through LinkedIn: Teri Radichel or IANS Analysis

© second sight lab 2022



Cybersecurity for executives within the cloud period at Amazon

Do you want cloud safety coaching? 2nd Sight Lab Cloud Safety Coaching

Is your cloud safe? Rent 2nd Sight Lab for a penetration check or safety evaluation.

Do you’ve a query about cybersecurity or cloud safety? Ask Teri Radichel by scheduling a name with IANS Analysis.

Cybersecurity and Cloud Safety Sources by Teri Radichel: Cybersecurity and cloud safety lessons, articles, white papers, shows, and podcasts

I want the article roughly CloudFormation can’t replace a stack when a custom-named useful resource requires changing | by Teri Radichel | Bugs That Chew | Oct, 2022 provides perception to you and is beneficial for addendum to your information

CloudFormation cannot update a stack when a custom-named resource requires replacing | by Teri Radichel | Bugs That Bite | Oct, 2022

By admin