search

aws-quickstart / cdk-eks-blueprints

AWS Quick Start Team
Apache License 2.0
454 stars 205 forks source link

Add AmazonSSMManagedInstanceCore permissions to nodes #584

Closed Feder1co5oave closed 1 year ago

Feder1co5oave commented 1 year ago

Describe the feature

Given that current AMI images for EKS nodes already run ssm-agent internally, it would suffice to add to the node's role the AmazonSSMManagedInstanceCore managed policy in order for the agent to check in to SSM and allow connecting to the instance without the need to add the SSMAgentAddOn (which runs a daemonset).

Proposed Solution

Create a node role and add the AmazonSSMManagedInstanceCore policy.

Acknowledgements

CDK version used

2.60.0

EKS Blueprints Version

1.5.4

Node.js Version

v16.19.0

Feder1co5oave commented 1 year ago

Solved in commit 0e40a90 (#622)