We recommend new projects start with resources from the AWS provider.
aws-native.eks.Cluster
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
An object representing an Amazon EKS cluster.
Create Cluster Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Cluster(name: string, args: ClusterArgs, opts?: CustomResourceOptions);
@overload
def Cluster(resource_name: str,
args: ClusterArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Cluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
resources_vpc_config: Optional[ClusterResourcesVpcConfigArgs] = None,
role_arn: Optional[str] = None,
outpost_config: Optional[ClusterOutpostConfigArgs] = None,
kubernetes_network_config: Optional[ClusterKubernetesNetworkConfigArgs] = None,
logging: Optional[LoggingArgs] = None,
name: Optional[str] = None,
access_config: Optional[ClusterAccessConfigArgs] = None,
encryption_config: Optional[Sequence[ClusterEncryptionConfigArgs]] = None,
bootstrap_self_managed_addons: Optional[bool] = None,
tags: Optional[Sequence[_root_inputs.TagArgs]] = None,
upgrade_policy: Optional[ClusterUpgradePolicyArgs] = None,
version: Optional[str] = None,
zonal_shift_config: Optional[ClusterZonalShiftConfigArgs] = None)
func NewCluster(ctx *Context, name string, args ClusterArgs, opts ...ResourceOption) (*Cluster, error)
public Cluster(string name, ClusterArgs args, CustomResourceOptions? opts = null)
public Cluster(String name, ClusterArgs args)
public Cluster(String name, ClusterArgs args, CustomResourceOptions options)
type: aws-native:eks:Cluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Cluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Cluster resource accepts the following input properties:
- Resources
Vpc Pulumi.Config Aws Native. Eks. Inputs. Cluster Resources Vpc Config - The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide . You must specify at least two subnets. You can specify up to five security groups, but we recommend that you use a dedicated security group for your cluster control plane.
- Role
Arn string - The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to AWS API operations on your behalf.
- Access
Config Pulumi.Aws Native. Eks. Inputs. Cluster Access Config - The access configuration for the cluster.
- Bootstrap
Self boolManaged Addons - Set this value to false to avoid creating the default networking add-ons when the cluster is created.
- Encryption
Config List<Pulumi.Aws Native. Eks. Inputs. Cluster Encryption Config> - The encryption configuration for the cluster.
- Kubernetes
Network Pulumi.Config Aws Native. Eks. Inputs. Cluster Kubernetes Network Config - The Kubernetes network configuration for the cluster.
- Logging
Pulumi.
Aws Native. Eks. Inputs. Logging - The logging configuration for your cluster.
- Name string
- The unique name to give to your cluster.
- Outpost
Config Pulumi.Aws Native. Eks. Inputs. Cluster Outpost Config - An object representing the configuration of your local Amazon EKS cluster on an AWS Outpost. This object isn't available for clusters on the AWS cloud.
- List<Pulumi.
Aws Native. Inputs. Tag> - An array of key-value pairs to apply to this resource.
- Upgrade
Policy Pulumi.Aws Native. Eks. Inputs. Cluster Upgrade Policy This value indicates if extended support is enabled or disabled for the cluster.
Learn more about EKS Extended Support in the EKS User Guide.
- Version string
- The desired Kubernetes version for your cluster. If you don't specify a value here, the latest version available in Amazon EKS is used.
- Zonal
Shift Pulumi.Config Aws Native. Eks. Inputs. Cluster Zonal Shift Config - The configuration for zonal shift for the cluster.
- Resources
Vpc ClusterConfig Resources Vpc Config Args - The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide . You must specify at least two subnets. You can specify up to five security groups, but we recommend that you use a dedicated security group for your cluster control plane.
- Role
Arn string - The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to AWS API operations on your behalf.
- Access
Config ClusterAccess Config Args - The access configuration for the cluster.
- Bootstrap
Self boolManaged Addons - Set this value to false to avoid creating the default networking add-ons when the cluster is created.
- Encryption
Config []ClusterEncryption Config Args - The encryption configuration for the cluster.
- Kubernetes
Network ClusterConfig Kubernetes Network Config Args - The Kubernetes network configuration for the cluster.
- Logging
Logging
Args - The logging configuration for your cluster.
- Name string
- The unique name to give to your cluster.
- Outpost
Config ClusterOutpost Config Args - An object representing the configuration of your local Amazon EKS cluster on an AWS Outpost. This object isn't available for clusters on the AWS cloud.
- Tag
Args - An array of key-value pairs to apply to this resource.
- Upgrade
Policy ClusterUpgrade Policy Args This value indicates if extended support is enabled or disabled for the cluster.
Learn more about EKS Extended Support in the EKS User Guide.
- Version string
- The desired Kubernetes version for your cluster. If you don't specify a value here, the latest version available in Amazon EKS is used.
- Zonal
Shift ClusterConfig Zonal Shift Config Args - The configuration for zonal shift for the cluster.
- resources
Vpc ClusterConfig Resources Vpc Config - The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide . You must specify at least two subnets. You can specify up to five security groups, but we recommend that you use a dedicated security group for your cluster control plane.
- role
Arn String - The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to AWS API operations on your behalf.
- access
Config ClusterAccess Config - The access configuration for the cluster.
- bootstrap
Self BooleanManaged Addons - Set this value to false to avoid creating the default networking add-ons when the cluster is created.
- encryption
Config List<ClusterEncryption Config> - The encryption configuration for the cluster.
- kubernetes
Network ClusterConfig Kubernetes Network Config - The Kubernetes network configuration for the cluster.
- logging Logging
- The logging configuration for your cluster.
- name String
- The unique name to give to your cluster.
- outpost
Config ClusterOutpost Config - An object representing the configuration of your local Amazon EKS cluster on an AWS Outpost. This object isn't available for clusters on the AWS cloud.
- List<Tag>
- An array of key-value pairs to apply to this resource.
- upgrade
Policy ClusterUpgrade Policy This value indicates if extended support is enabled or disabled for the cluster.
Learn more about EKS Extended Support in the EKS User Guide.
- version String
- The desired Kubernetes version for your cluster. If you don't specify a value here, the latest version available in Amazon EKS is used.
- zonal
Shift ClusterConfig Zonal Shift Config - The configuration for zonal shift for the cluster.
- resources
Vpc ClusterConfig Resources Vpc Config - The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide . You must specify at least two subnets. You can specify up to five security groups, but we recommend that you use a dedicated security group for your cluster control plane.
- role
Arn string - The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to AWS API operations on your behalf.
- access
Config ClusterAccess Config - The access configuration for the cluster.
- bootstrap
Self booleanManaged Addons - Set this value to false to avoid creating the default networking add-ons when the cluster is created.
- encryption
Config ClusterEncryption Config[] - The encryption configuration for the cluster.
- kubernetes
Network ClusterConfig Kubernetes Network Config - The Kubernetes network configuration for the cluster.
- logging Logging
- The logging configuration for your cluster.
- name string
- The unique name to give to your cluster.
- outpost
Config ClusterOutpost Config - An object representing the configuration of your local Amazon EKS cluster on an AWS Outpost. This object isn't available for clusters on the AWS cloud.
- Tag[]
- An array of key-value pairs to apply to this resource.
- upgrade
Policy ClusterUpgrade Policy This value indicates if extended support is enabled or disabled for the cluster.
Learn more about EKS Extended Support in the EKS User Guide.
- version string
- The desired Kubernetes version for your cluster. If you don't specify a value here, the latest version available in Amazon EKS is used.
- zonal
Shift ClusterConfig Zonal Shift Config - The configuration for zonal shift for the cluster.
- resources_
vpc_ Clusterconfig Resources Vpc Config Args - The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide . You must specify at least two subnets. You can specify up to five security groups, but we recommend that you use a dedicated security group for your cluster control plane.
- role_
arn str - The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to AWS API operations on your behalf.
- access_
config ClusterAccess Config Args - The access configuration for the cluster.
- bootstrap_
self_ boolmanaged_ addons - Set this value to false to avoid creating the default networking add-ons when the cluster is created.
- encryption_
config Sequence[ClusterEncryption Config Args] - The encryption configuration for the cluster.
- kubernetes_
network_ Clusterconfig Kubernetes Network Config Args - The Kubernetes network configuration for the cluster.
- logging
Logging
Args - The logging configuration for your cluster.
- name str
- The unique name to give to your cluster.
- outpost_
config ClusterOutpost Config Args - An object representing the configuration of your local Amazon EKS cluster on an AWS Outpost. This object isn't available for clusters on the AWS cloud.
- Sequence[Tag
Args] - An array of key-value pairs to apply to this resource.
- upgrade_
policy ClusterUpgrade Policy Args This value indicates if extended support is enabled or disabled for the cluster.
Learn more about EKS Extended Support in the EKS User Guide.
- version str
- The desired Kubernetes version for your cluster. If you don't specify a value here, the latest version available in Amazon EKS is used.
- zonal_
shift_ Clusterconfig Zonal Shift Config Args - The configuration for zonal shift for the cluster.
- resources
Vpc Property MapConfig - The VPC configuration that's used by the cluster control plane. Amazon EKS VPC resources have specific requirements to work properly with Kubernetes. For more information, see Cluster VPC Considerations and Cluster Security Group Considerations in the Amazon EKS User Guide . You must specify at least two subnets. You can specify up to five security groups, but we recommend that you use a dedicated security group for your cluster control plane.
- role
Arn String - The Amazon Resource Name (ARN) of the IAM role that provides permissions for the Kubernetes control plane to make calls to AWS API operations on your behalf.
- access
Config Property Map - The access configuration for the cluster.
- bootstrap
Self BooleanManaged Addons - Set this value to false to avoid creating the default networking add-ons when the cluster is created.
- encryption
Config List<Property Map> - The encryption configuration for the cluster.
- kubernetes
Network Property MapConfig - The Kubernetes network configuration for the cluster.
- logging Property Map
- The logging configuration for your cluster.
- name String
- The unique name to give to your cluster.
- outpost
Config Property Map - An object representing the configuration of your local Amazon EKS cluster on an AWS Outpost. This object isn't available for clusters on the AWS cloud.
- List<Property Map>
- An array of key-value pairs to apply to this resource.
- upgrade
Policy Property Map This value indicates if extended support is enabled or disabled for the cluster.
Learn more about EKS Extended Support in the EKS User Guide.
- version String
- The desired Kubernetes version for your cluster. If you don't specify a value here, the latest version available in Amazon EKS is used.
- zonal
Shift Property MapConfig - The configuration for zonal shift for the cluster.
Outputs
All input properties are implicitly available as output properties. Additionally, the Cluster resource produces the following output properties:
- Arn string
- The ARN of the cluster, such as arn:aws:eks:us-west-2:666666666666:cluster/prod.
- Aws
Id string - The unique ID given to your cluster.
- string
- The certificate-authority-data for your cluster.
- Cluster
Security stringGroup Id - The cluster security group that was created by Amazon EKS for the cluster. Managed node groups use this security group for control plane to data plane communication.
- Encryption
Config stringKey Arn - Amazon Resource Name (ARN) or alias of the customer master key (CMK).
- Endpoint string
- The endpoint for your Kubernetes API server, such as https://5E1D0CEXAMPLEA591B746AFC5AB30262.yl4.us-west-2.eks.amazonaws.com.
- Id string
- The provider-assigned unique ID for this managed resource.
- Open
Id stringConnect Issuer Url - The issuer URL for the cluster's OIDC identity provider, such as https://oidc.eks.us-west-2.amazonaws.com/id/EXAMPLED539D4633E53DE1B716D3041E. If you need to remove https:// from this output value, you can include the following code in your template.
- Arn string
- The ARN of the cluster, such as arn:aws:eks:us-west-2:666666666666:cluster/prod.
- Aws
Id string - The unique ID given to your cluster.
- string
- The certificate-authority-data for your cluster.
- Cluster
Security stringGroup Id - The cluster security group that was created by Amazon EKS for the cluster. Managed node groups use this security group for control plane to data plane communication.
- Encryption
Config stringKey Arn - Amazon Resource Name (ARN) or alias of the customer master key (CMK).
- Endpoint string
- The endpoint for your Kubernetes API server, such as https://5E1D0CEXAMPLEA591B746AFC5AB30262.yl4.us-west-2.eks.amazonaws.com.
- Id string
- The provider-assigned unique ID for this managed resource.
- Open
Id stringConnect Issuer Url - The issuer URL for the cluster's OIDC identity provider, such as https://oidc.eks.us-west-2.amazonaws.com/id/EXAMPLED539D4633E53DE1B716D3041E. If you need to remove https:// from this output value, you can include the following code in your template.
- arn String
- The ARN of the cluster, such as arn:aws:eks:us-west-2:666666666666:cluster/prod.
- aws
Id String - The unique ID given to your cluster.
- String
- The certificate-authority-data for your cluster.
- cluster
Security StringGroup Id - The cluster security group that was created by Amazon EKS for the cluster. Managed node groups use this security group for control plane to data plane communication.
- encryption
Config StringKey Arn - Amazon Resource Name (ARN) or alias of the customer master key (CMK).
- endpoint String
- The endpoint for your Kubernetes API server, such as https://5E1D0CEXAMPLEA591B746AFC5AB30262.yl4.us-west-2.eks.amazonaws.com.
- id String
- The provider-assigned unique ID for this managed resource.
- open
Id StringConnect Issuer Url - The issuer URL for the cluster's OIDC identity provider, such as https://oidc.eks.us-west-2.amazonaws.com/id/EXAMPLED539D4633E53DE1B716D3041E. If you need to remove https:// from this output value, you can include the following code in your template.
- arn string
- The ARN of the cluster, such as arn:aws:eks:us-west-2:666666666666:cluster/prod.
- aws
Id string - The unique ID given to your cluster.
- string
- The certificate-authority-data for your cluster.
- cluster
Security stringGroup Id - The cluster security group that was created by Amazon EKS for the cluster. Managed node groups use this security group for control plane to data plane communication.
- encryption
Config stringKey Arn - Amazon Resource Name (ARN) or alias of the customer master key (CMK).
- endpoint string
- The endpoint for your Kubernetes API server, such as https://5E1D0CEXAMPLEA591B746AFC5AB30262.yl4.us-west-2.eks.amazonaws.com.
- id string
- The provider-assigned unique ID for this managed resource.
- open
Id stringConnect Issuer Url - The issuer URL for the cluster's OIDC identity provider, such as https://oidc.eks.us-west-2.amazonaws.com/id/EXAMPLED539D4633E53DE1B716D3041E. If you need to remove https:// from this output value, you can include the following code in your template.
- arn str
- The ARN of the cluster, such as arn:aws:eks:us-west-2:666666666666:cluster/prod.
- aws_
id str - The unique ID given to your cluster.
- str
- The certificate-authority-data for your cluster.
- cluster_
security_ strgroup_ id - The cluster security group that was created by Amazon EKS for the cluster. Managed node groups use this security group for control plane to data plane communication.
- encryption_
config_ strkey_ arn - Amazon Resource Name (ARN) or alias of the customer master key (CMK).
- endpoint str
- The endpoint for your Kubernetes API server, such as https://5E1D0CEXAMPLEA591B746AFC5AB30262.yl4.us-west-2.eks.amazonaws.com.
- id str
- The provider-assigned unique ID for this managed resource.
- open_
id_ strconnect_ issuer_ url - The issuer URL for the cluster's OIDC identity provider, such as https://oidc.eks.us-west-2.amazonaws.com/id/EXAMPLED539D4633E53DE1B716D3041E. If you need to remove https:// from this output value, you can include the following code in your template.
- arn String
- The ARN of the cluster, such as arn:aws:eks:us-west-2:666666666666:cluster/prod.
- aws
Id String - The unique ID given to your cluster.
- String
- The certificate-authority-data for your cluster.
- cluster
Security StringGroup Id - The cluster security group that was created by Amazon EKS for the cluster. Managed node groups use this security group for control plane to data plane communication.
- encryption
Config StringKey Arn - Amazon Resource Name (ARN) or alias of the customer master key (CMK).
- endpoint String
- The endpoint for your Kubernetes API server, such as https://5E1D0CEXAMPLEA591B746AFC5AB30262.yl4.us-west-2.eks.amazonaws.com.
- id String
- The provider-assigned unique ID for this managed resource.
- open
Id StringConnect Issuer Url - The issuer URL for the cluster's OIDC identity provider, such as https://oidc.eks.us-west-2.amazonaws.com/id/EXAMPLED539D4633E53DE1B716D3041E. If you need to remove https:// from this output value, you can include the following code in your template.
Supporting Types
ClusterAccessConfig, ClusterAccessConfigArgs
- Authentication
Mode Pulumi.Aws Native. Eks. Cluster Access Config Authentication Mode - Specify the authentication mode that should be used to create your cluster.
- Bootstrap
Cluster boolCreator Admin Permissions - Set this value to false to avoid creating a default cluster admin Access Entry using the IAM principal used to create the cluster.
- Authentication
Mode ClusterAccess Config Authentication Mode - Specify the authentication mode that should be used to create your cluster.
- Bootstrap
Cluster boolCreator Admin Permissions - Set this value to false to avoid creating a default cluster admin Access Entry using the IAM principal used to create the cluster.
- authentication
Mode ClusterAccess Config Authentication Mode - Specify the authentication mode that should be used to create your cluster.
- bootstrap
Cluster BooleanCreator Admin Permissions - Set this value to false to avoid creating a default cluster admin Access Entry using the IAM principal used to create the cluster.
- authentication
Mode ClusterAccess Config Authentication Mode - Specify the authentication mode that should be used to create your cluster.
- bootstrap
Cluster booleanCreator Admin Permissions - Set this value to false to avoid creating a default cluster admin Access Entry using the IAM principal used to create the cluster.
- authentication_
mode ClusterAccess Config Authentication Mode - Specify the authentication mode that should be used to create your cluster.
- bootstrap_
cluster_ boolcreator_ admin_ permissions - Set this value to false to avoid creating a default cluster admin Access Entry using the IAM principal used to create the cluster.
- authentication
Mode "CONFIG_MAP" | "API_AND_CONFIG_MAP" | "API" - Specify the authentication mode that should be used to create your cluster.
- bootstrap
Cluster BooleanCreator Admin Permissions - Set this value to false to avoid creating a default cluster admin Access Entry using the IAM principal used to create the cluster.
ClusterAccessConfigAuthenticationMode, ClusterAccessConfigAuthenticationModeArgs
- Config
Map - CONFIG_MAP
- Api
And Config Map - API_AND_CONFIG_MAP
- Api
- API
- Cluster
Access Config Authentication Mode Config Map - CONFIG_MAP
- Cluster
Access Config Authentication Mode Api And Config Map - API_AND_CONFIG_MAP
- Cluster
Access Config Authentication Mode Api - API
- Config
Map - CONFIG_MAP
- Api
And Config Map - API_AND_CONFIG_MAP
- Api
- API
- Config
Map - CONFIG_MAP
- Api
And Config Map - API_AND_CONFIG_MAP
- Api
- API
- CONFIG_MAP
- CONFIG_MAP
- API_AND_CONFIG_MAP
- API_AND_CONFIG_MAP
- API
- API
- "CONFIG_MAP"
- CONFIG_MAP
- "API_AND_CONFIG_MAP"
- API_AND_CONFIG_MAP
- "API"
- API
ClusterControlPlanePlacement, ClusterControlPlanePlacementArgs
- Group
Name string - Specify the placement group name of the control place machines for your cluster.
- Group
Name string - Specify the placement group name of the control place machines for your cluster.
- group
Name String - Specify the placement group name of the control place machines for your cluster.
- group
Name string - Specify the placement group name of the control place machines for your cluster.
- group_
name str - Specify the placement group name of the control place machines for your cluster.
- group
Name String - Specify the placement group name of the control place machines for your cluster.
ClusterEncryptionConfig, ClusterEncryptionConfigArgs
- Provider
Pulumi.
Aws Native. Eks. Inputs. Cluster Provider - The encryption provider for the cluster.
- Resources List<string>
- Specifies the resources to be encrypted. The only supported value is "secrets".
- Provider
Cluster
Provider - The encryption provider for the cluster.
- Resources []string
- Specifies the resources to be encrypted. The only supported value is "secrets".
- provider
Cluster
Provider - The encryption provider for the cluster.
- resources List<String>
- Specifies the resources to be encrypted. The only supported value is "secrets".
- provider
Cluster
Provider - The encryption provider for the cluster.
- resources string[]
- Specifies the resources to be encrypted. The only supported value is "secrets".
- provider
Cluster
Provider - The encryption provider for the cluster.
- resources Sequence[str]
- Specifies the resources to be encrypted. The only supported value is "secrets".
- provider Property Map
- The encryption provider for the cluster.
- resources List<String>
- Specifies the resources to be encrypted. The only supported value is "secrets".
ClusterKubernetesNetworkConfig, ClusterKubernetesNetworkConfigArgs
- Ip
Family Pulumi.Aws Native. Eks. Cluster Kubernetes Network Config Ip Family - Ipv4 or Ipv6. You can only specify ipv6 for 1.21 and later clusters that use version 1.10.1 or later of the Amazon VPC CNI add-on
- Service
Ipv4Cidr string - The CIDR block to assign Kubernetes service IP addresses from. If you don't specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or 172.20.0.0/16 CIDR blocks. We recommend that you specify a block that does not overlap with resources in other networks that are peered or connected to your VPC.
- Service
Ipv6Cidr string - The CIDR block to assign Kubernetes service IP addresses from.
- Ip
Family ClusterKubernetes Network Config Ip Family - Ipv4 or Ipv6. You can only specify ipv6 for 1.21 and later clusters that use version 1.10.1 or later of the Amazon VPC CNI add-on
- Service
Ipv4Cidr string - The CIDR block to assign Kubernetes service IP addresses from. If you don't specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or 172.20.0.0/16 CIDR blocks. We recommend that you specify a block that does not overlap with resources in other networks that are peered or connected to your VPC.
- Service
Ipv6Cidr string - The CIDR block to assign Kubernetes service IP addresses from.
- ip
Family ClusterKubernetes Network Config Ip Family - Ipv4 or Ipv6. You can only specify ipv6 for 1.21 and later clusters that use version 1.10.1 or later of the Amazon VPC CNI add-on
- service
Ipv4Cidr String - The CIDR block to assign Kubernetes service IP addresses from. If you don't specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or 172.20.0.0/16 CIDR blocks. We recommend that you specify a block that does not overlap with resources in other networks that are peered or connected to your VPC.
- service
Ipv6Cidr String - The CIDR block to assign Kubernetes service IP addresses from.
- ip
Family ClusterKubernetes Network Config Ip Family - Ipv4 or Ipv6. You can only specify ipv6 for 1.21 and later clusters that use version 1.10.1 or later of the Amazon VPC CNI add-on
- service
Ipv4Cidr string - The CIDR block to assign Kubernetes service IP addresses from. If you don't specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or 172.20.0.0/16 CIDR blocks. We recommend that you specify a block that does not overlap with resources in other networks that are peered or connected to your VPC.
- service
Ipv6Cidr string - The CIDR block to assign Kubernetes service IP addresses from.
- ip_
family ClusterKubernetes Network Config Ip Family - Ipv4 or Ipv6. You can only specify ipv6 for 1.21 and later clusters that use version 1.10.1 or later of the Amazon VPC CNI add-on
- service_
ipv4_ strcidr - The CIDR block to assign Kubernetes service IP addresses from. If you don't specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or 172.20.0.0/16 CIDR blocks. We recommend that you specify a block that does not overlap with resources in other networks that are peered or connected to your VPC.
- service_
ipv6_ strcidr - The CIDR block to assign Kubernetes service IP addresses from.
- ip
Family "ipv4" | "ipv6" - Ipv4 or Ipv6. You can only specify ipv6 for 1.21 and later clusters that use version 1.10.1 or later of the Amazon VPC CNI add-on
- service
Ipv4Cidr String - The CIDR block to assign Kubernetes service IP addresses from. If you don't specify a block, Kubernetes assigns addresses from either the 10.100.0.0/16 or 172.20.0.0/16 CIDR blocks. We recommend that you specify a block that does not overlap with resources in other networks that are peered or connected to your VPC.
- service
Ipv6Cidr String - The CIDR block to assign Kubernetes service IP addresses from.
ClusterKubernetesNetworkConfigIpFamily, ClusterKubernetesNetworkConfigIpFamilyArgs
- Ipv4
- ipv4
- Ipv6
- ipv6
- Cluster
Kubernetes Network Config Ip Family Ipv4 - ipv4
- Cluster
Kubernetes Network Config Ip Family Ipv6 - ipv6
- Ipv4
- ipv4
- Ipv6
- ipv6
- Ipv4
- ipv4
- Ipv6
- ipv6
- IPV4
- ipv4
- IPV6
- ipv6
- "ipv4"
- ipv4
- "ipv6"
- ipv6
ClusterLoggingEnabledTypes, ClusterLoggingEnabledTypesArgs
- Enabled
Types List<Pulumi.Aws Native. Eks. Inputs. Cluster Logging Type Config> The enabled control plane logs for your cluster. All log types are disabled if the array is empty.
When updating a resource, you must include this
EnabledTypes
property if the previous CloudFormation template of the resource had it.
- Enabled
Types []ClusterLogging Type Config The enabled control plane logs for your cluster. All log types are disabled if the array is empty.
When updating a resource, you must include this
EnabledTypes
property if the previous CloudFormation template of the resource had it.
- enabled
Types List<ClusterLogging Type Config> The enabled control plane logs for your cluster. All log types are disabled if the array is empty.
When updating a resource, you must include this
EnabledTypes
property if the previous CloudFormation template of the resource had it.
- enabled
Types ClusterLogging Type Config[] The enabled control plane logs for your cluster. All log types are disabled if the array is empty.
When updating a resource, you must include this
EnabledTypes
property if the previous CloudFormation template of the resource had it.
- enabled_
types Sequence[ClusterLogging Type Config] The enabled control plane logs for your cluster. All log types are disabled if the array is empty.
When updating a resource, you must include this
EnabledTypes
property if the previous CloudFormation template of the resource had it.
- enabled
Types List<Property Map> The enabled control plane logs for your cluster. All log types are disabled if the array is empty.
When updating a resource, you must include this
EnabledTypes
property if the previous CloudFormation template of the resource had it.
ClusterLoggingTypeConfig, ClusterLoggingTypeConfigArgs
- Type
Pulumi.
Aws Native. Eks. Cluster Logging Type Config Type - name of the log type
- Type
Cluster
Logging Type Config Type - name of the log type
- type
Cluster
Logging Type Config Type - name of the log type
- type
Cluster
Logging Type Config Type - name of the log type
- type
Cluster
Logging Type Config Type - name of the log type
- type
"api" | "audit" | "authenticator" | "controller
Manager" | "scheduler" - name of the log type
ClusterLoggingTypeConfigType, ClusterLoggingTypeConfigTypeArgs
- Api
- api
- Audit
- audit
- Authenticator
- authenticator
- Controller
Manager - controllerManager
- Scheduler
- scheduler
- Cluster
Logging Type Config Type Api - api
- Cluster
Logging Type Config Type Audit - audit
- Cluster
Logging Type Config Type Authenticator - authenticator
- Cluster
Logging Type Config Type Controller Manager - controllerManager
- Cluster
Logging Type Config Type Scheduler - scheduler
- Api
- api
- Audit
- audit
- Authenticator
- authenticator
- Controller
Manager - controllerManager
- Scheduler
- scheduler
- Api
- api
- Audit
- audit
- Authenticator
- authenticator
- Controller
Manager - controllerManager
- Scheduler
- scheduler
- API
- api
- AUDIT
- audit
- AUTHENTICATOR
- authenticator
- CONTROLLER_MANAGER
- controllerManager
- SCHEDULER
- scheduler
- "api"
- api
- "audit"
- audit
- "authenticator"
- authenticator
- "controller
Manager" - controllerManager
- "scheduler"
- scheduler
ClusterOutpostConfig, ClusterOutpostConfigArgs
- Control
Plane stringInstance Type - Specify the Instance type of the machines that should be used to create your cluster.
- Outpost
Arns List<string> - Specify one or more Arn(s) of Outpost(s) on which you would like to create your cluster.
- Control
Plane Pulumi.Placement Aws Native. Eks. Inputs. Cluster Control Plane Placement - Specify the placement group of the control plane machines for your cluster.
- Control
Plane stringInstance Type - Specify the Instance type of the machines that should be used to create your cluster.
- Outpost
Arns []string - Specify one or more Arn(s) of Outpost(s) on which you would like to create your cluster.
- Control
Plane ClusterPlacement Control Plane Placement - Specify the placement group of the control plane machines for your cluster.
- control
Plane StringInstance Type - Specify the Instance type of the machines that should be used to create your cluster.
- outpost
Arns List<String> - Specify one or more Arn(s) of Outpost(s) on which you would like to create your cluster.
- control
Plane ClusterPlacement Control Plane Placement - Specify the placement group of the control plane machines for your cluster.
- control
Plane stringInstance Type - Specify the Instance type of the machines that should be used to create your cluster.
- outpost
Arns string[] - Specify one or more Arn(s) of Outpost(s) on which you would like to create your cluster.
- control
Plane ClusterPlacement Control Plane Placement - Specify the placement group of the control plane machines for your cluster.
- control_
plane_ strinstance_ type - Specify the Instance type of the machines that should be used to create your cluster.
- outpost_
arns Sequence[str] - Specify one or more Arn(s) of Outpost(s) on which you would like to create your cluster.
- control_
plane_ Clusterplacement Control Plane Placement - Specify the placement group of the control plane machines for your cluster.
- control
Plane StringInstance Type - Specify the Instance type of the machines that should be used to create your cluster.
- outpost
Arns List<String> - Specify one or more Arn(s) of Outpost(s) on which you would like to create your cluster.
- control
Plane Property MapPlacement - Specify the placement group of the control plane machines for your cluster.
ClusterProvider, ClusterProviderArgs
- Key
Arn string - Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric, created in the same region as the cluster, and if the KMS key was created in a different account, the user must have access to the KMS key.
- Key
Arn string - Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric, created in the same region as the cluster, and if the KMS key was created in a different account, the user must have access to the KMS key.
- key
Arn String - Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric, created in the same region as the cluster, and if the KMS key was created in a different account, the user must have access to the KMS key.
- key
Arn string - Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric, created in the same region as the cluster, and if the KMS key was created in a different account, the user must have access to the KMS key.
- key_
arn str - Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric, created in the same region as the cluster, and if the KMS key was created in a different account, the user must have access to the KMS key.
- key
Arn String - Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric, created in the same region as the cluster, and if the KMS key was created in a different account, the user must have access to the KMS key.
ClusterResourcesVpcConfig, ClusterResourcesVpcConfigArgs
- Subnet
Ids List<string> - Specify subnets for your Amazon EKS nodes. Amazon EKS creates cross-account elastic network interfaces in these subnets to allow communication between your nodes and the Kubernetes control plane.
- Endpoint
Private boolAccess - Set this value to true to enable private access for your cluster's Kubernetes API server endpoint. If you enable private access, Kubernetes API requests from within your cluster's VPC use the private VPC endpoint. The default value for this parameter is false, which disables private access for your Kubernetes API server. If you disable private access and you have nodes or AWS Fargate pods in the cluster, then ensure that publicAccessCidrs includes the necessary CIDR blocks for communication with the nodes or Fargate pods.
- Endpoint
Public boolAccess - Set this value to false to disable public access to your cluster's Kubernetes API server endpoint. If you disable public access, your cluster's Kubernetes API server can only receive requests from within the cluster VPC. The default value for this parameter is true, which enables public access for your Kubernetes API server.
- Public
Access List<string>Cidrs - The CIDR blocks that are allowed access to your cluster's public Kubernetes API server endpoint. Communication to the endpoint from addresses outside of the CIDR blocks that you specify is denied. The default value is 0.0.0.0/0. If you've disabled private endpoint access and you have nodes or AWS Fargate pods in the cluster, then ensure that you specify the necessary CIDR blocks.
- Security
Group List<string>Ids - Specify one or more security groups for the cross-account elastic network interfaces that Amazon EKS creates to use to allow communication between your worker nodes and the Kubernetes control plane. If you don't specify a security group, the default security group for your VPC is used.
- Subnet
Ids []string - Specify subnets for your Amazon EKS nodes. Amazon EKS creates cross-account elastic network interfaces in these subnets to allow communication between your nodes and the Kubernetes control plane.
- Endpoint
Private boolAccess - Set this value to true to enable private access for your cluster's Kubernetes API server endpoint. If you enable private access, Kubernetes API requests from within your cluster's VPC use the private VPC endpoint. The default value for this parameter is false, which disables private access for your Kubernetes API server. If you disable private access and you have nodes or AWS Fargate pods in the cluster, then ensure that publicAccessCidrs includes the necessary CIDR blocks for communication with the nodes or Fargate pods.
- Endpoint
Public boolAccess - Set this value to false to disable public access to your cluster's Kubernetes API server endpoint. If you disable public access, your cluster's Kubernetes API server can only receive requests from within the cluster VPC. The default value for this parameter is true, which enables public access for your Kubernetes API server.
- Public
Access []stringCidrs - The CIDR blocks that are allowed access to your cluster's public Kubernetes API server endpoint. Communication to the endpoint from addresses outside of the CIDR blocks that you specify is denied. The default value is 0.0.0.0/0. If you've disabled private endpoint access and you have nodes or AWS Fargate pods in the cluster, then ensure that you specify the necessary CIDR blocks.
- Security
Group []stringIds - Specify one or more security groups for the cross-account elastic network interfaces that Amazon EKS creates to use to allow communication between your worker nodes and the Kubernetes control plane. If you don't specify a security group, the default security group for your VPC is used.
- subnet
Ids List<String> - Specify subnets for your Amazon EKS nodes. Amazon EKS creates cross-account elastic network interfaces in these subnets to allow communication between your nodes and the Kubernetes control plane.
- endpoint
Private BooleanAccess - Set this value to true to enable private access for your cluster's Kubernetes API server endpoint. If you enable private access, Kubernetes API requests from within your cluster's VPC use the private VPC endpoint. The default value for this parameter is false, which disables private access for your Kubernetes API server. If you disable private access and you have nodes or AWS Fargate pods in the cluster, then ensure that publicAccessCidrs includes the necessary CIDR blocks for communication with the nodes or Fargate pods.
- endpoint
Public BooleanAccess - Set this value to false to disable public access to your cluster's Kubernetes API server endpoint. If you disable public access, your cluster's Kubernetes API server can only receive requests from within the cluster VPC. The default value for this parameter is true, which enables public access for your Kubernetes API server.
- public
Access List<String>Cidrs - The CIDR blocks that are allowed access to your cluster's public Kubernetes API server endpoint. Communication to the endpoint from addresses outside of the CIDR blocks that you specify is denied. The default value is 0.0.0.0/0. If you've disabled private endpoint access and you have nodes or AWS Fargate pods in the cluster, then ensure that you specify the necessary CIDR blocks.
- security
Group List<String>Ids - Specify one or more security groups for the cross-account elastic network interfaces that Amazon EKS creates to use to allow communication between your worker nodes and the Kubernetes control plane. If you don't specify a security group, the default security group for your VPC is used.
- subnet
Ids string[] - Specify subnets for your Amazon EKS nodes. Amazon EKS creates cross-account elastic network interfaces in these subnets to allow communication between your nodes and the Kubernetes control plane.
- endpoint
Private booleanAccess - Set this value to true to enable private access for your cluster's Kubernetes API server endpoint. If you enable private access, Kubernetes API requests from within your cluster's VPC use the private VPC endpoint. The default value for this parameter is false, which disables private access for your Kubernetes API server. If you disable private access and you have nodes or AWS Fargate pods in the cluster, then ensure that publicAccessCidrs includes the necessary CIDR blocks for communication with the nodes or Fargate pods.
- endpoint
Public booleanAccess - Set this value to false to disable public access to your cluster's Kubernetes API server endpoint. If you disable public access, your cluster's Kubernetes API server can only receive requests from within the cluster VPC. The default value for this parameter is true, which enables public access for your Kubernetes API server.
- public
Access string[]Cidrs - The CIDR blocks that are allowed access to your cluster's public Kubernetes API server endpoint. Communication to the endpoint from addresses outside of the CIDR blocks that you specify is denied. The default value is 0.0.0.0/0. If you've disabled private endpoint access and you have nodes or AWS Fargate pods in the cluster, then ensure that you specify the necessary CIDR blocks.
- security
Group string[]Ids - Specify one or more security groups for the cross-account elastic network interfaces that Amazon EKS creates to use to allow communication between your worker nodes and the Kubernetes control plane. If you don't specify a security group, the default security group for your VPC is used.
- subnet_
ids Sequence[str] - Specify subnets for your Amazon EKS nodes. Amazon EKS creates cross-account elastic network interfaces in these subnets to allow communication between your nodes and the Kubernetes control plane.
- endpoint_
private_ boolaccess - Set this value to true to enable private access for your cluster's Kubernetes API server endpoint. If you enable private access, Kubernetes API requests from within your cluster's VPC use the private VPC endpoint. The default value for this parameter is false, which disables private access for your Kubernetes API server. If you disable private access and you have nodes or AWS Fargate pods in the cluster, then ensure that publicAccessCidrs includes the necessary CIDR blocks for communication with the nodes or Fargate pods.
- endpoint_
public_ boolaccess - Set this value to false to disable public access to your cluster's Kubernetes API server endpoint. If you disable public access, your cluster's Kubernetes API server can only receive requests from within the cluster VPC. The default value for this parameter is true, which enables public access for your Kubernetes API server.
- public_
access_ Sequence[str]cidrs - The CIDR blocks that are allowed access to your cluster's public Kubernetes API server endpoint. Communication to the endpoint from addresses outside of the CIDR blocks that you specify is denied. The default value is 0.0.0.0/0. If you've disabled private endpoint access and you have nodes or AWS Fargate pods in the cluster, then ensure that you specify the necessary CIDR blocks.
- security_
group_ Sequence[str]ids - Specify one or more security groups for the cross-account elastic network interfaces that Amazon EKS creates to use to allow communication between your worker nodes and the Kubernetes control plane. If you don't specify a security group, the default security group for your VPC is used.
- subnet
Ids List<String> - Specify subnets for your Amazon EKS nodes. Amazon EKS creates cross-account elastic network interfaces in these subnets to allow communication between your nodes and the Kubernetes control plane.
- endpoint
Private BooleanAccess - Set this value to true to enable private access for your cluster's Kubernetes API server endpoint. If you enable private access, Kubernetes API requests from within your cluster's VPC use the private VPC endpoint. The default value for this parameter is false, which disables private access for your Kubernetes API server. If you disable private access and you have nodes or AWS Fargate pods in the cluster, then ensure that publicAccessCidrs includes the necessary CIDR blocks for communication with the nodes or Fargate pods.
- endpoint
Public BooleanAccess - Set this value to false to disable public access to your cluster's Kubernetes API server endpoint. If you disable public access, your cluster's Kubernetes API server can only receive requests from within the cluster VPC. The default value for this parameter is true, which enables public access for your Kubernetes API server.
- public
Access List<String>Cidrs - The CIDR blocks that are allowed access to your cluster's public Kubernetes API server endpoint. Communication to the endpoint from addresses outside of the CIDR blocks that you specify is denied. The default value is 0.0.0.0/0. If you've disabled private endpoint access and you have nodes or AWS Fargate pods in the cluster, then ensure that you specify the necessary CIDR blocks.
- security
Group List<String>Ids - Specify one or more security groups for the cross-account elastic network interfaces that Amazon EKS creates to use to allow communication between your worker nodes and the Kubernetes control plane. If you don't specify a security group, the default security group for your VPC is used.
ClusterUpgradePolicy, ClusterUpgradePolicyArgs
- Support
Type Pulumi.Aws Native. Eks. Cluster Upgrade Policy Support Type - Specify the support type for your cluster.
- Support
Type ClusterUpgrade Policy Support Type - Specify the support type for your cluster.
- support
Type ClusterUpgrade Policy Support Type - Specify the support type for your cluster.
- support
Type ClusterUpgrade Policy Support Type - Specify the support type for your cluster.
- support_
type ClusterUpgrade Policy Support Type - Specify the support type for your cluster.
- support
Type "STANDARD" | "EXTENDED" - Specify the support type for your cluster.
ClusterUpgradePolicySupportType, ClusterUpgradePolicySupportTypeArgs
- Standard
- STANDARD
- Extended
- EXTENDED
- Cluster
Upgrade Policy Support Type Standard - STANDARD
- Cluster
Upgrade Policy Support Type Extended - EXTENDED
- Standard
- STANDARD
- Extended
- EXTENDED
- Standard
- STANDARD
- Extended
- EXTENDED
- STANDARD
- STANDARD
- EXTENDED
- EXTENDED
- "STANDARD"
- STANDARD
- "EXTENDED"
- EXTENDED
ClusterZonalShiftConfig, ClusterZonalShiftConfigArgs
- Enabled bool
- Set this value to true to enable zonal shift for the cluster.
- Enabled bool
- Set this value to true to enable zonal shift for the cluster.
- enabled Boolean
- Set this value to true to enable zonal shift for the cluster.
- enabled boolean
- Set this value to true to enable zonal shift for the cluster.
- enabled bool
- Set this value to true to enable zonal shift for the cluster.
- enabled Boolean
- Set this value to true to enable zonal shift for the cluster.
Logging, LoggingArgs
- Cluster
Logging Pulumi.Value Aws Native. Eks. Inputs. Cluster Logging Enabled Types - The cluster control plane logging configuration for your cluster.
- Cluster
Logging ClusterLogging Enabled Types - The cluster control plane logging configuration for your cluster.
- cluster
Logging ClusterLogging Enabled Types - The cluster control plane logging configuration for your cluster.
- cluster
Logging ClusterLogging Enabled Types - The cluster control plane logging configuration for your cluster.
- cluster_
logging ClusterLogging Enabled Types - The cluster control plane logging configuration for your cluster.
- cluster
Logging Property Map - The cluster control plane logging configuration for your cluster.
Tag, TagArgs
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.