403 Errors for CAPI from AWS
Solved
LinuxHi Everyone,
I run Crowdsec inside each of the nodes of a classic Auto Scaling Group in AWS (Apache/PHP-FPM webservers). I've been doing this for 2-3 years now without issue. Yesterday crowdsec decided to fail -- hard -- while I was on a date with a beautiful woman (causing us to have to turn around on our hike).
I am unable to contact the CAPI from any of my nodes. Is it possible my servers are being blocked?
[root@Wordpress /etc]$ /usr/bin/crowdsec -c /etc/crowdsec/config.yaml -t -error
FATAL api server init: unable to run local API: authenticate watcher (ec228439745b88511ea5fb9533bcba80HJbhvIcdmTx27OHL): API error: Forbidden
[root@Wordpress /etc]$ sudo cscli capi status
Loaded credentials from /etc/crowdsec/online_api_credentials.yaml
Trying to authenticate with username ec228439745b88511ea5fb9533bcba80HJbhvIcdmTx27OHL on https://api.crowdsec.net/
INFO attempt 1 out of 2
INFO attempt 2 out of 2
INFO max attempts reached for status code 403
Error: failed to authenticate to Central API (CAPI): API error: Forbidden
I tried uninstalling Crowdsec on my source VM (where I create ASG images) and I still get the error on connecting to CAPI. This node gets barely any traffic so it shouldn't be blocked no matter what.
Any ideas would be greatly appreciated.
I run Crowdsec inside each of the nodes of a classic Auto Scaling Group in AWS (Apache/PHP-FPM webservers). I've been doing this for 2-3 years now without issue. Yesterday crowdsec decided to fail -- hard -- while I was on a date with a beautiful woman (causing us to have to turn around on our hike).
I am unable to contact the CAPI from any of my nodes. Is it possible my servers are being blocked?
[root@Wordpress /etc]$ /usr/bin/crowdsec -c /etc/crowdsec/config.yaml -t -error
FATAL api server init: unable to run local API: authenticate watcher (ec228439745b88511ea5fb9533bcba80HJbhvIcdmTx27OHL): API error: Forbidden
[root@Wordpress /etc]$ sudo cscli capi status
Loaded credentials from /etc/crowdsec/online_api_credentials.yaml
Trying to authenticate with username ec228439745b88511ea5fb9533bcba80HJbhvIcdmTx27OHL on https://api.crowdsec.net/
INFO attempt 1 out of 2
INFO attempt 2 out of 2
INFO max attempts reached for status code 403
Error: failed to authenticate to Central API (CAPI): API error: Forbidden
I tried uninstalling Crowdsec on my source VM (where I create ASG images) and I still get the error on connecting to CAPI. This node gets barely any traffic so it shouldn't be blocked no matter what.
Any ideas would be greatly appreciated.
