guygrip
/ aws-auth-definition.yaml
Created
May 18, 2022 16:45
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # each mapRoles entry maps an IAM role to a username and set of groups | |
| # Each username and group can optionally contain template parameters: | |
| # 1) "{{AccountID}}" is the 12 digit AWS ID. | |
| # 2) "{{SessionName}}" is the role session name, with `@` characters | |
| # transliterated to `-` characters. | |
| # 3) "{{SessionNameRaw}}" is the role session name, without character | |
| # transliteration (available in version >= 0.5). | |
| mapRoles: | |
| # statically map arn:aws:iam::000000000000:role/KubernetesAdmin to cluster admin | |
| - roleARN: arn:aws:iam::000000000000:role/KubernetesAdmin |