Terraform EKS module: aws auth roles

From wikieduonline
Revision as of 11:09, 20 December 2023 by Welcome (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

List of role maps to add to the aws-auth configmap

https://registry.terraform.io/modules/terraform-aws-modules/eks/aws/latest#input_aws_auth_roles

Official examples

 aws_auth_roles = [
   {
     rolearn  = "arn:aws:iam::66666666666:role/role1"
     username = "role1"
     groups   = ["system:masters"]
   },
 ]
  aws_auth_users = [
   {
     userarn  = "arn:aws:iam::66666666666:user/user1"
     username = "user1"
     groups   = ["system:masters"]
   },
   {
     userarn  = "arn:aws:iam::66666666666:user/user2"
     username = "user2"
     groups   = ["system:masters"]
   },
 ]

EKS karpenter official example

 manage_aws_auth_configmap = true
 aws_auth_roles = [
   # We need to add in the Karpenter node IAM role for nodes launched by Karpenter
   {
     rolearn  = module.karpenter.role_arn
     username = "system:node:Template:EC2PrivateDNSName"
     groups = [
       "system:bootstrappers",
       "system:nodes",
     ]
   },


Related

See also

Advertising: