AWS
Last updated
Last updated
The official guides users to create their cluster using the official eksctl
tool.
If you wish to make use of Garden's feature that leverages more-powerful remote Kubernetes clusters for image building, you'll need to pass a few additional flags to eksctl
.
The following command will create an EKS cluster with a managed node group using any AWS instances that meet the criteria of 4 vCPUs and 16 GiB of memory. It uses IAM Roles for Service Accounts (IRSA) to attach a policy to the cluster allowing power user access to AWS' Elastic Container Registry. Visit the docs for more details on the .
IAM users or roles need the following AWS permissions to interact with your EKS cluster: eks:DescribeCluster eks:AccessKubernetesApi
You can select these when creating the policy through the UI, or with this JSON version:
Finally, configure Garden to annotate your in-cluster pods with the correct Amazon Resource Name by following Garden's guide.
You will also need a Kubernetes role and service account in the EKS cluster. This can be achieved with the aws-auth configmap. The . If you are interested in minimizing the permissions in the cluster, please take a look at our .