EKS IAM Role for Service Account IRSA Introduction

EKS IAM Role for Service Account IRSA Introduction

November 21, 2021

Tags:

aws eks

Introduces IRSA, IAM Role for Service Account. This allows pods to use IAM Roles to authenticated and use AWS APIs. The advantage is then you don't have to manage and rotate the AWS Access Keys in the future.

You can confirm that IRSA has been set by looking for these env vars in the pod:

AWS_ROLE_ARN
AWS_WEB_IDENTITY_TOKEN_FILE

If IRSA has been setup, these env vars will be set.

Links:

Explore lesson as part of a learning path

AWS and Terraform Kubernetes

Get full access to these great resources

All for less than the price of coffee a day

44 courses

286 lessons

46+ hours

Get started with BoltOps Learn now and get access to easy and powerful lessons

Get started with BoltOps Learn

BoltOps Tools

Terraspace: The Terraform Framework

It provides an organized structure, conventions over configurations, keeps your code DRY, and adds convenient tooling. Terraspace makes working with Terraform easier and more fun.
Jets: The Ruby Serverless Framework

Ruby on Jets allows you to create and deploy serverless services with ease, and to seamlessly glue AWS services together with the most beautiful dynamic language: Ruby. It includes everything you need to build an API and deploy it to AWS Lambda. Jets leverages the power of Ruby to make serverless joyful for everyone.
AWS CodeBuild Tool

Cody is a AWS CodeBuild management tool. Cody simplifies creating and managing AWS CodeBuild projects. Comes with a powerful DSL.
Lono: The CloudFormation Framework

Building infrastructure-as-code is challenging. Lono makes it much easier and fun. It includes everything you need to manage and deploy infrastructure-as-code.
Kubes: Kubernetes Deployment Tool

Kubes is a Kubernetes Deployment Tool. It builds the docker image, creates the Kubernetes YAML, and runs kubectl apply. It automates the deployment process and saves you precious finger-typing energy.