Details
Normal Description
1. Proposed title of this feature request
Pre-check ROSA/OSD related IAM Users' activity status before the upgrade.
2. What is the nature and description of the request?
IHAC upgrade was stuck for over 24 hours, then discovered that the AWS EBS CSI IAM User that caused the problem, which was disabled by AWS Config Auto Remediation.
3. Why does the customer need this? (List the business requirements here)
It's hard for CEE and SRE to find the root cause, the common sense to troubleshoot an upgrade stuck will always be to check the cluster itself, on this case, it was a PV that could not be recreated.
But it's pretty normal for a CX who using a BYOVPC mode, they might already have security policies on AWS Config(or others)to disable or remove unused IAM roles after a certain period. eg. 30 days.
This check would save a lot of time and effort, and make upgrade more smooth and efficient not only for CX but also for CEE and SRE.
4. List any affected packages or components.
At this moment, I'm not very sure, maybe MUO make more sense for this feature