Looking to add a kube2iam addon that would auto create the IAM policies and install the helm chart (of course).
The only thing missing from possible full coverage would be handling trust relationships.
Lazyshot
All 9 comments
Could you please explain the idea of this issue in more detail?
GSokol
on 17 Oct 2018
Umbrella issue: #53
Add-ons proposal: #242
errordeveloper
on 17 Oct 2018
kube2iam or kiam ?
kgoralski
on 23 Oct 2018
I found this comparison useful:
https://www.bluematador.com/blog/iam-access-in-kubernetes-kube2iam-vs-kiam
Both tools need an extra policy attached to the nodegroup node role. Does eksctl have any option to attach a named IAM policy to the node role?
whereisaaron
on 22 Feb 2019
Looks like when I add the kube2iam role to the node group role, it works, but I can't teardown the elks cluster without first manually removing the kube2iam role. Would be great if eksctl allowed you to specify the name/arn of the policy to attach to the node group role.
atif1996
on 6 Jun 2019
Have people seen this https://github.com/mikkeloscar/kube-aws-iam-controller?
errordeveloper
on 10 Jun 2019
Are there any updates on this? I need to configure the AWS ALB ingress controller and it seems I need to configure kube2iam. I used eksctl to crreate my cluster. Are there any updated steps to configure eksctl with a given role or must we euse kube2iam ?
github4es
on 3 Mar 2020
I think this can be close, IAM Roles for Service Accounts are the best recommended option.
errordeveloper
on 3 Mar 2020
@martina-if please close it =)
errordeveloper
on 3 Mar 2020
Related issues
martina-if
路
4Comments
danielchalef
路
3Comments
errordeveloper
路
4Comments
albertmichaelj
路
3Comments
errordeveloper
路
3Comments
Most helpful comment
I found this comparison useful:
https://www.bluematador.com/blog/iam-access-in-kubernetes-kube2iam-vs-kiam
Both tools need an extra policy attached to the nodegroup node role. Does
eksctlhave any option to attach a named IAM policy to the node role?