Answer-first summary for fast verification
Answer: Create an IAM role with the minimum required permissions for the EKS cluster to access the necessary services, and assign it to the EKS cluster.
To ensure secure and least privilege access for the EKS cluster to access other AWS services, you should create an IAM role with the minimum required permissions for the EKS cluster to access the necessary services, and assign it to the EKS cluster. This approach follows the principle of least privilege by granting the EKS cluster access only to the resources it needs. Option A provides excessive permissions, while options C and D are not recommended as they involve using the root account or manually configuring permissions, which can lead to security risks or errors.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Your company is implementing a new container orchestration solution using Amazon Elastic Kubernetes Service (EKS). You need to ensure that the EKS cluster has the necessary permissions to access other AWS services. Which of the following steps should you take to achieve this?
A
Create an IAM role with full access to all AWS services and assign it to the EKS cluster.
B
Create an IAM role with the minimum required permissions for the EKS cluster to access the necessary services, and assign it to the EKS cluster.
C
Use the root account credentials to configure the EKS cluster to access the necessary services.
D
Manually configure the necessary permissions for each service in the EKS cluster configuration.