EKS IAM permissions #21838
Unanswered
BeyondEvil
asked this question in
Q&A
EKS IAM permissions
#21838
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
When using EKS Pod Identity (or IRSA) to give ArgoCD access to "outside" clusters, the documentation says to give the IAM role the
AmazonEKSClusterAdminPolicypolicy.This policy is very permissive, and I doubt ArgoCD needs all of it.
So, if one wants to follow the principle of least privileges, what permissions does ArgoCD really need?
Beta Was this translation helpful? Give feedback.
All reactions