AWS::EKS::AccessEntry AccessPolicy
An access policy includes permissions that allow Amazon EKS to authorize an
IAM principal to work with Kubernetes objects on your cluster. The policies are
managed by Amazon EKS, but they're not IAM policies. You can't
view the permissions in the policies using the API. The permissions for many of the
policies are similar to the Kubernetes cluster-admin
, admin
,
edit
, and view
cluster roles. For more information about
these cluster roles, see User-facing roles
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "AccessScope" :
AccessScope
, "PolicyArn" :String
}
YAML
AccessScope:
AccessScope
PolicyArn:String
Properties
AccessScope
-
The scope of an
AccessPolicy
that's associated to anAccessEntry
.Required: Yes
Type: AccessScope
Update requires: No interruption
PolicyArn
-
The ARN of the access policy.
Required: Yes
Type: String
Update requires: No interruption