Amazon EKS Concepts: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 43: Line 43:


{{Internal|.kube_config|.kube/config}}
{{Internal|.kube_config|.kube/config}}
=EKS Security=
==EKS IAM Permissions==
* eks:DescribeCluster

Revision as of 20:43, 12 June 2020

Internal

Overview

EKS Cluster

Control Plane

Managed Worker Node Group

Node Group Name

EKS Worker Node

Cluster Service Role

Cluster Autoscaler

Cluster Endpoint

AWS Infrastructure Requirements

  • VPC
  • subnets
  • security groups. A dedicated security group for each cluster control plane is recommended.
  • Topology diagram

Integration with ECR

Logging

SLA

https://aws.amazon.com/eks/sla/

aws-iam-authenticator

Page 17.

aws-iam-authenticator Operations

aws-iam-authenticator

.kube/config Configuration

AWS documentation refers to the Kubernetes configuration file as "kubeconfig".

.kube/config

EKS Security

EKS IAM Permissions

  • eks:DescribeCluster
Retrieved from "https://kb.novaordis.com/index.php?title=Amazon_EKS_Concepts&oldid=67375"