在清单文件中为 EKS 集群分配角色？

Question

我是 Kubernetes 新手，正在使用 eksctl 在 AWS 中创建 EKS 集群。这是我的简单清单文件

kind: ClusterConfig
apiVersion: eksctl.io/v1alpha5

metadata:
  name: sandbox
  region: us-east-1
  version: "1.18"

managedNodeGroups:
  - name: ng-sandbox
    instanceType: r5a.xlarge
    privateNetworking: true
    desiredCapacity: 2
    minSize: 1
    maxSize: 4
    ssh:
      allow: true
      publicKeyName: my-ssh-key

fargateProfiles:
  - name: fp-default
    selectors:
      # All workloads in the "default" Kubernetes namespace will be
      # scheduled onto Fargate:
      - namespace: default
      # All workloads in the "kube-system" Kubernetes namespace will be
      # scheduled onto Fargate:
      - namespace: kube-system
  - name: fp-sandbox
    selectors:
      # All workloads in the "sandbox" Kubernetes namespace matching the
      # following label selectors will be scheduled onto Fargate:
      - namespace: sandbox
        labels:
          env: sandbox
          checks: passed

我创建了 2 个角色，EKSClusterRole 用于集群管理，EKSWorkerRole 用于工作节点？我在文件中的什么地方使用它们？我正在查看eksctl Config file schema 页面，我不清楚在清单文件中的哪个位置使用它们。

Answer 1

正如你提到的，它在managedNodeGroups docs

managedNodeGroups:
  - ...
    iam:
      instanceRoleARN: my-role-arn
      # or
      # instanceRoleName: my-role-name

你也应该阅读

• Creating a cluster with Fargate support using a config file
• AWS Fargate