πŸ”’
Configure IAM
Sedai uses an agentless approach in order to securely access AWS resources.
Sedai programmatically connects to your cloud resources via Identity and Access Management (IAM) authentication. IAM provides granular control of your cloud environments so that you can specify user permissions to access certain resources.
IAM authentication requires the following:
Once you configure IAM from your AWS Console, you will be able to connect the account/cluster to Sedai using either the Role ARN or User Secret/Access Keys.
In addition to IAM authentication, for EKS resources you must also set up Kubernetes Role Based Access Control (RBAC) for authorization and add the IAM Role or User into the aws-auth configmap.

Configure IAM with CloudFormation

You can automatically set up IAM authentication using one of the following CloudFormation Stacks. Select your preferred configuration below to launch the CloudFormation Stack from your AWS Console:
  • Autonomous Policy (See what's included >)
  • Read-only Policy (See what's included >)
You can alternatively manually create the IAM policy, IAM Role, and IAM User from your AWS Console.

Resources

Policies and permissions in IAM - AWS Identity and Access Management
AWS Identity and Access Management
IAM roles - AWS Identity and Access Management
AWS Identity and Access Management
IAM users - AWS Identity and Access Management
AWS Identity and Access Management
Copy link
On this page
Configure IAM with CloudFormation
Resources