A company uses AWS Control Tower to manage multiple AWS accounts, with each application team having its own account for hosting applications. These accounts are organized under an AWS Organizations umbrella. A centralized DevOps account within AWS Control Tower is responsible for managing CI/CD pipelines that application teams use to deploy their applications to their respective AWS accounts. There is an IAM role for deployment in both the centralized DevOps account and the application accounts. An application team is currently attempting to deploy their application to an Amazon Elastic Kubernetes Service (Amazon EKS) cluster located in their application AWS account. The deployment process involves an AWS CodeBuild project set up in the centralized DevOps account, which utilizes an IAM service role for CodeBuild. The deployment is encountering an Unauthorized error when the CodeBuild project tries to connect to the EKS cluster in the application account. What configuration change will rectify this Unauthorized error?