IRSA for non EKS Clusters | PlatformCon 2023
This talk discusses using IAM Roles for Service Accounts (IRSA) to provide secure access to AWS resources from within pods in EC2-based Kubernetes clusters. IRSA is a robust and fine-grained solution that is easy to set up and less prone to incidents than other solutions. It is backed by the OpenSource project Pod Identity Webhook and can be used on non-EKS clusters.
To provide secure access to AWS resources, we have been using Kiam & Kube2iam project on our EC2-based clusters. Many of the AWS Customers moved to Amazon EKS and then adopted IAM Roles for Service Accounts (IRSA). IRSA is a feature that enables secure access to AWS resources from within pods while also providing robust identity and access management capabilities.
IRSA is much more robust, more fine-grained and easy to set up and less prone to incidents compared to other solutions.
Speaker: Suraj Narwade
Sr. Platform Engineer, RVU
_____________
Check all the PlatformCon talks: https://platformcon.com/talks
Check all the PlatformCon tracks: https://platformcon.com/#conference-t...
Join Platform Engineering Slack: https://platformengineering.org/slack-rd
#PlatformCon2023 #PlatformEngineering
Watch video IRSA for non EKS Clusters | PlatformCon 2023 online without registration, duration hours minute second in high quality. This video was added by user Platform Engineering 08 June 2023, don't forget to share it with your friends and acquaintances, it has been viewed on our site 1,083 once and liked it 18 people.