# AWS LoadBalancer Controller

Reference: 

# Troubleshooting

## If you create an ingress object but no loadbalancer is provisioned and your controller is running

Check aws-load-balancer-controller  pod logs. If you see this error:

```
"error":"couldn't auto-discover subnets: UnauthorizedOperation: You are not authorized to perform this operation.\n\tstatus code: 403, 
```

Solution:

Follow instructions from https://aws.amazon.com/premiumsupport/knowledge-center/eks-load-balancer-controller-subnets/

Add `ec2:DescribeAvailabilityZones` permission to the IAM role associated with the loadbalancer controller service account