AWS::EKS::AccessEntry AccessPolicy

An access policy includes permissions that allow Amazon EKS to authorize an IAM principal to work with Kubernetes objects on your cluster. The policies are managed by Amazon EKS, but they're not IAM policies. You can't view the permissions in the policies using the API. The permissions for many of the policies are similar to the Kubernetes cluster-admin, admin, edit, and view cluster roles. For more information about these cluster roles, see User-facing roles in the Kubernetes documentation. To view the contents of the policies, see Access policy permissions in the Amazon EKS User Guide.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON


{
  "AccessScope" : AccessScope,
  "PolicyArn" : String
}

YAML


  AccessScope: 
    AccessScope
  PolicyArn: String

Properties

AccessScope

The scope of an AccessPolicy that's associated to an AccessEntry.

Required: Yes

Type: AccessScope

Update requires: No interruption

PolicyArn

The ARN of the access policy.

Required: Yes

Type: String

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

AWS::EKS::AccessEntry

AccessScope