Difference between revisions of "--role-arn"
Jump to navigation
Jump to search
| (One intermediate revision by the same user not shown) | |||
| Line 10: | Line 10: | ||
* <code>[[aws eks update-kubeconfig]]</code> | * <code>[[aws eks update-kubeconfig]]</code> | ||
* <code>[[aws sts assume-role --role-arn]] your_role</code> | * <code>[[aws sts assume-role --role-arn]] your_role</code> | ||
| + | * <code>[[aws sts get-caller-identity]]</code> | ||
== See also == | == See also == | ||
* [[AWS role]] | * [[AWS role]] | ||
| + | * {{aws sts}} | ||
* {{aws eks}} | * {{aws eks}} | ||
[[Category:EKS]] | [[Category:EKS]] | ||
Latest revision as of 14:16, 2 September 2022
--role-arn is the Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to Amazon Web Services API operations on your behalf
aws eks create-cluster --name prod --role-arn arn:aws:iam::012345678910:role/eks-service-role-AWSServiceRoleForAmazonEKS-J7ONKE3BQ4PI --resources-vpc-config subnetIds=subnet-6782e71e,subnet-e7e761ac,securityGroupIds=sg-6979fe18
aws eks update-kubeconfig --name YOUR-EKS-CLUSTER-NAME --region aws-region --role-arn
Related[edit]
- Amazon EKS cluster role
aws eks update-kubeconfigaws sts assume-role --role-arn your_roleaws sts get-caller-identity
See also[edit]
- AWS role
- AWS STS
(sts:),aws sts[get-session-token|get-caller-identity|assume-role | assume-role-with-web-identity | assume-role-with-saml | get-access-key-info ] - AWS EKS:
AWS::EKS,aws eks [ create-cluster | list-clusters|describe-cluster|update-kubeconfig | list-updates | list-addons | update-cluster-version | update-nodegroup-version | get-token | create-addon ]
Advertising:
