AWS Security ChangesHomeSearch

AWS eks medium security documentation change

Service: eks · 2025-05-10 · Security-related medium

File: eks/latest/userguide/hybrid-nodes-bottlerocket.md

Summary

Added authentication-mode settings for AWS Systems Manager and IAM Roles Anywhere configurations

Security assessment

Explicitly setting authentication-mode='aws' enforces AWS-native authentication mechanisms, reducing risk of credential compromise through improper authentication methods. This addresses potential security gaps in hybrid node authentication.

Diff

diff --git a/eks/latest/userguide/hybrid-nodes-bottlerocket.md b/eks/latest/userguide/hybrid-nodes-bottlerocket.md
index 9f49c9d0d..d33921c05 100644
--- a//eks/latest/userguide/hybrid-nodes-bottlerocket.md
+++ b//eks/latest/userguide/hybrid-nodes-bottlerocket.md
@@ -46,0 +47 @@ If you are using AWS Systems Manager as your credential provider, create a `sett
+    authentication-mode = "aws"
@@ -114,0 +116 @@ If you are using AWS IAM Roles Anywhere as your credential provider, create a `s
+    authentication-mode = "aws"