AWS eks medium security documentation change
Summary
Added authentication-mode settings for AWS Systems Manager and IAM Roles Anywhere configurations
Security assessment
Explicitly setting authentication-mode='aws' enforces AWS-native authentication mechanisms, reducing risk of credential compromise through improper authentication methods. This addresses potential security gaps in hybrid node authentication.
Diff
diff --git a/eks/latest/userguide/hybrid-nodes-bottlerocket.md b/eks/latest/userguide/hybrid-nodes-bottlerocket.md index 9f49c9d0d..d33921c05 100644 --- a//eks/latest/userguide/hybrid-nodes-bottlerocket.md +++ b//eks/latest/userguide/hybrid-nodes-bottlerocket.md @@ -46,0 +47 @@ If you are using AWS Systems Manager as your credential provider, create a `sett + authentication-mode = "aws" @@ -114,0 +116 @@ If you are using AWS IAM Roles Anywhere as your credential provider, create a `s + authentication-mode = "aws"