Difference between revisions of "Amazon Cloudformation EKS cluster role"

From wikieduonline
Jump to navigation Jump to search
 
(2 intermediate revisions by the same user not shown)
Line 25: Line 25:
 
  [[Outputs:]]
 
  [[Outputs:]]
 
   
 
   
   RoleArn:
+
   [[RoleArn:]]
 
     Description: The role that Amazon EKS will use to create AWS resources for Kubernetes clusters
 
     Description: The role that Amazon EKS will use to create AWS resources for Kubernetes clusters
 
     Value: ![[GetAtt]] MyeksClusterRole.Arn
 
     Value: ![[GetAtt]] MyeksClusterRole.Arn
 
     Export:
 
     Export:
 
       Name: ![[Sub]] "${AWS::StackName}-RoleArn"
 
       Name: ![[Sub]] "${AWS::StackName}-RoleArn"
 +
 +
== Web console options ==
 +
EKS - Allows EKS to manage clusters on your behalf.
 +
EKS - Cluster - Allows access to other AWS service resources that are required to operate clusters managed by EKS.
 +
EKS - Connector - Allows access to other AWS service resources that are required to connect to external clusters
 +
EKS - Fargate pod - Allows access to other AWS service resources that are required to run Amazon EKS pods on AWS Fargate.
 +
EKS - Fargate profile - Allows EKS to run Fargate tasks.
 +
EKS - [[Nodegroup]] - Allow EKS to manage nodegroups on your behalf.
  
 
== Related ==
 
== Related ==

Latest revision as of 02:04, 16 February 2022

https://docs.aws.amazon.com/eks/latest/userguide/service_IAM_role.html#create-service-role

---
AWSTemplateFormatVersion: '2010-09-09'
Description: 'Amazon EKS Cluster Role'


Resources: 

  MyeksClusterRole:
    Type: AWS::IAM::Role
    Properties:
      AssumeRolePolicyDocument:
        Version: '2012-10-17'
        Statement:
        - Effect: Allow
          Principal:
            Service:
            - eks.amazonaws.com
          Action:
          - sts:AssumeRole
      ManagedPolicyArns:
        - arn:aws:iam::aws:policy/AmazonEKSClusterPolicy

Outputs:

  RoleArn:
    Description: The role that Amazon EKS will use to create AWS resources for Kubernetes clusters
    Value: !GetAtt MyeksClusterRole.Arn
    Export:
      Name: !Sub "${AWS::StackName}-RoleArn"

Web console options[edit]

EKS - Allows EKS to manage clusters on your behalf.
EKS - Cluster - Allows access to other AWS service resources that are required to operate clusters managed by EKS.
EKS - Connector - Allows access to other AWS service resources that are required to connect to external clusters
EKS - Fargate pod - Allows access to other AWS service resources that are required to run Amazon EKS pods on AWS Fargate.
EKS - Fargate profile - Allows EKS to run Fargate tasks.
EKS - Nodegroup - Allow EKS to manage nodegroups on your behalf.

Related[edit]

See also[edit]

Advertising: