Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

AWS CloudFormation: CREATE_FAILED DBSecurityGroup is not supported in this region (London)

I am trying to reapply a cloudformer template from another account but in the same region, EU-West-2 (London). When I apply the template I get the following error:

10:05:10 UTC+0100   CREATE_FAILED   AWS::RDS::DBSecurityGroup   dbsgdefault DBSecurityGroup is not supported in this region
Client Request Token:Console-CreateStack-1bdd4259-7132-4d44-8ba9-c3e7af892413

The relevant part of the template is:

"dbsgdefault": {
  "Type": "AWS::RDS::DBSecurityGroup",
  "Properties": {
    "GroupDescription": "default"
  }
}

How come this can't be reapplied to the account?

like image 218
A West Avatar asked Aug 22 '18 09:08

A West


People also ask

How do I check my CloudFormation error?

Troubleshooting guideUse the CloudFormation console to view the status of your stack. In the console, you can view a list of stack events while your stack is being created, updated, or deleted. From this list, find the failure event and then view the status reason for that event.

What happens when CloudFormation stack creation fails?

If stack creation fails, go to the CloudFormation Resources list in the AWS Management Console to find the log group. Note that if stack creation fails before any instances are launched, a log group might not be created. By default, AWS deletes CloudWatch log groups if stack creation fails.

What is the default behavior of a CloudFormation stack if creation fails?

CloudFormation will continue to provision the resources until completion or stop on a different failure. Remediate any issues to continue the deployment process. CloudFormation performs the necessary updates before retrying provisioning actions on resources that couldn't be successfully provisioned earlier.

What happens when one of the resources in a CloudFormation stack Cannot be created successfully?

Q: What happens when one of the resources in a stack cannot be created successfully? By default, the “automatic rollback on error” feature is enabled. This will direct CloudFormation to only create or update all resources in your stack if all individual operations succeed.


1 Answers

I got same error when used eu-central-1 region. After examining awslabs example I assumed that in that (and probably also cn-north-1 region) you have to not use AWS::RDS::DBSecurityGroup and use AWS::EC2::SecurityGroup within VPCSecurityGroups property instead.

like image 75
svobol13 Avatar answered Sep 28 '22 12:09

svobol13