Amazon EKS
Guard installation guide can be found here. Install the Guard on your system by following Install Guard as CLI
.
Configure Kubectl
To use EKS cluster with Guard, you have to install AWS CLI on your system. Follow Configuring the AWS CLI in the AWS command Line Interface User Guide.
Guard uses the same credential that are returned with the following command.
$ aws sts get-caller-identity
Open ~/.kube/config
file with your favourite editor and copy the following code.
apiVersion: v1
clusters:
- cluster:
server: <endpoint-url>
certificate-authority-data: <base64-encoded-ca-cert>
name: kubernetes
contexts:
- context:
cluster: kubernetes
user: aws
name: aws
current-context: aws
kind: Config
preferences: {}
users:
- name: aws
user:
exec:
apiVersion: client.authentication.k8s.io/v1alpha1
command: guard
args:
- "login"
- "-k"
- "<cluster-name>"
- "-p"
- "eks"
Here,
- Replace the
<endpoint-url>
with endpoint URL, which can be retrieved by following command
$ aws eks describe-cluster --name <cluster-name> --query cluster.endpoint
- Replace the
<base64-encoded-ca-cert>
with the certificate authority data, which can be retrieved by following command
$ aws eks describe-cluster --name <cluster-name> --query cluster.certificateAuthority.data
To test the configuration run
$ kubectl get pods --all-namespaces