We have been adding AWS accounts to our third party configuration settings for device sync setup in PAM and they have all been successful in the past. But trying to add another AWS connection today, we get error "AWS provisioning already in progress. Please wait."

Release : 3.4

Component : PRIVILEGED ACCESS MANAGEMENT

PAM uses a lock file to serialize AWS connection addition and refreshes. If a new connection is attempted to be added while a refresh is in progress, PAM with not add the connection but show a "AWS provisioning already in progress. Please wait." message. The more AWS connections are configured already, and the shorter the configured refresh interval is, the more likely it is that you experience this problem.

The PAM admin has to wait for a time when no refresh is in progress. The session logs show the refresh activity. If the refresh messages cover a large percentage of the configured refresh interval, consider increasing the interval.

In a cluster environment a workaround could be to add the connection using the second or third node in the primary site rather than the first node, which should be doing the AWS refresh activity.