AWS::EKS::AccessEntry AccessPolicy - AWS CloudFormation

AWS::EKS::AccessEntry AccessPolicy

An access policy includes permissions that allow Amazon EKS to authorize an IAM principal to work with Kubernetes objects on your cluster. The policies are managed by Amazon EKS, but they're not IAM policies. You can't view the permissions in the policies using the API. The permissions for many of the policies are similar to the Kubernetes cluster-admin, admin, edit, and view cluster roles. For more information about these cluster roles, see User-facing roles in the Kubernetes documentation. To view the contents of the policies, see Access policy permissions in the Amazon EKS User Guide.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "AccessScope" : AccessScope, "PolicyArn" : String }

Properties

AccessScope

The scope of an AccessPolicy that's associated to an AccessEntry.

Required: Yes

Type: AccessScope

Update requires: No interruption

PolicyArn

The ARN of the access policy.

Required: Yes

Type: String

Update requires: No interruption