EKS user journey #1715
Merged
EKS user journey #1715
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
✅ Deploy Preview for docs-spectrocloud ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
ritawatson
requested review from
karl-cardenas-coding,
lennessyy,
caroldelwing and
wcrum
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
antongisli
reviewed
Nov 1, 2023
docs/docs-content/clusters/public-cloud/aws/add-aws-accounts.md
Outdated
Show resolved
Hide resolved
antongisli
reviewed
Nov 1, 2023
antongisli
reviewed
Nov 1, 2023
antongisli
reviewed
Nov 1, 2023
antongisli
reviewed
Nov 1, 2023
wcrum
reviewed
Nov 1, 2023
antongisli
reviewed
Nov 1, 2023
docs/docs-content/clusters/public-cloud/aws/enable-secrets-encryption-kms-key.md
Show resolved
Hide resolved
…journey-cleanup-eks-first-cluster
karl-cardenas-coding
approved these changes
Nov 8, 2023
| |**Cluster Endpoint Access**| This setting provides access to the Kubernetes API endpoint. Select **Private**, **Public** or **Private & Public**. For more information, refer to the [Amazon EKS cluster endpoint access control](https://docs.aws.amazon.com/eks/latest/userguide/cluster-endpoint.html) reference guide.| | ||
| |**Public Access CIDRs** |This setting controls which IP address CIDR ranges can access the cluster. To fully allow unrestricted network access, enter `0.0.0.0/0` in the field. For more information, refer to the [Amazon EKS cluster endpoint access control](https://docs.aws.amazon.com/eks/latest/userguide/cluster-endpoint.html) reference guide.| | ||
| |**Private Access CIDRs** |This setting controls which private IP address CIDR ranges can access the cluster. Private CIDRs provide a way to specify private, self-hosted, and air-gapped networks or Private Cloud Gateway (PCG) that may be located in other VPCs connected to the VPC hosting the cluster endpoint.<br /><br />To restrict network access, enter the IP address CIDR range that will provide access to the cluster. Although `0.0.0.0/0` is pre-populated in this field, only IPs that can reach the private endpoint are those within the VPC or any other connected VPCs. For example, while using `0.0.0.0/0` would allow traffic throughout the VPC and all peered VPCs, specifying the VPC CIDR `10.0.0.0/16` would limit traffic to an individual VPC. For more information, refer to the [Amazon EKS cluster endpoint access control](https://docs.aws.amazon.com/eks/latest/userguide/cluster-endpoint.html) reference guide.| | ||
| |**Enable Encryption**| Use this option for secrets encryption. You must have an existing AWS Key Management Service (KMS) key you can use. Toggle the **Enable encryption** option and use the **drop-down Menu** in the **ARN** field to select the KMS key ARN.<br /><br />If you do not have a KMS key and want to create one to use this option, review [Enable Secrets Encryption for EKS Cluster](enable-secrets-encryption-kms-key.md). Once your KMS key is created, return to this Cluster Config step to enable secrets encryption and specify the KMS key ARN. | |
There was a problem hiding this comment.
🚫 [vale] reported by reviewdog 🐶
[Vale.Terms] Use 'config' instead of 'Config'.
vault-token-factory-spectrocloud bot
pushed a commit
that referenced
this pull request
Nov 8, 2023
* Revise steps * Fixed tables * Clean up steps, improve flow * Add info based on prototype. * Verify steps, add resources * Several small changes * Add links to existing OIDC documentation * Add links to other docs * Last changes from final workflow walkthrough * Updates for internal style, grammar: add aws acct * Fix repeated 'the' * Vale fixes * Incorporate first comments * Revise info block, add link * Added review comments * Fix typo in policy name * Revised KMS key creation section * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Incorporate review comments for KMS key * Fix typo * Create new page for KMS key * Add Access EKS Cluster section * Minor change to Access EKS Cluster * Replace kubelogin prereq w. aws-iam-authenticator * Revised Access EKS Cluster, step 9, prereqs * docs: updates and clarifications * Fix typo --------- Co-authored-by: Karl Cardenas <[email protected]> (cherry picked from commit 7e40ede)
vault-token-factory-spectrocloud bot
pushed a commit
that referenced
this pull request
Nov 8, 2023
* Revise steps * Fixed tables * Clean up steps, improve flow * Add info based on prototype. * Verify steps, add resources * Several small changes * Add links to existing OIDC documentation * Add links to other docs * Last changes from final workflow walkthrough * Updates for internal style, grammar: add aws acct * Fix repeated 'the' * Vale fixes * Incorporate first comments * Revise info block, add link * Added review comments * Fix typo in policy name * Revised KMS key creation section * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Incorporate review comments for KMS key * Fix typo * Create new page for KMS key * Add Access EKS Cluster section * Minor change to Access EKS Cluster * Replace kubelogin prereq w. aws-iam-authenticator * Revised Access EKS Cluster, step 9, prereqs * docs: updates and clarifications * Fix typo --------- Co-authored-by: Karl Cardenas <[email protected]> (cherry picked from commit 7e40ede)
💔 Some backports could not be created
Note: Successful backport PRs will be merged automatically after passing CI. Manual backportTo create the backport manually run: Questions ?Please refer to the Backport tool documentation and see the Github Action logs for details |
ritawatson
added a commit
that referenced
this pull request
Nov 8, 2023
* Revise steps * Fixed tables * Clean up steps, improve flow * Add info based on prototype. * Verify steps, add resources * Several small changes * Add links to existing OIDC documentation * Add links to other docs * Last changes from final workflow walkthrough * Updates for internal style, grammar: add aws acct * Fix repeated 'the' * Vale fixes * Incorporate first comments * Revise info block, add link * Added review comments * Fix typo in policy name * Revised KMS key creation section * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Incorporate review comments for KMS key * Fix typo * Create new page for KMS key * Add Access EKS Cluster section * Minor change to Access EKS Cluster * Replace kubelogin prereq w. aws-iam-authenticator * Revised Access EKS Cluster, step 9, prereqs * docs: updates and clarifications * Fix typo --------- Co-authored-by: Karl Cardenas <[email protected]> (cherry picked from commit 7e40ede) Co-authored-by: Rita Watson <[email protected]>
ritawatson
added a commit
that referenced
this pull request
Nov 8, 2023
* Revise steps * Fixed tables * Clean up steps, improve flow * Add info based on prototype. * Verify steps, add resources * Several small changes * Add links to existing OIDC documentation * Add links to other docs * Last changes from final workflow walkthrough * Updates for internal style, grammar: add aws acct * Fix repeated 'the' * Vale fixes * Incorporate first comments * Revise info block, add link * Added review comments * Fix typo in policy name * Revised KMS key creation section * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Incorporate review comments for KMS key * Fix typo * Create new page for KMS key * Add Access EKS Cluster section * Minor change to Access EKS Cluster * Replace kubelogin prereq w. aws-iam-authenticator * Revised Access EKS Cluster, step 9, prereqs * docs: updates and clarifications * Fix typo --------- Co-authored-by: Karl Cardenas <[email protected]> (cherry picked from commit 7e40ede) Co-authored-by: Rita Watson <[email protected]>
ritawatson
added a commit
that referenced
this pull request
Nov 8, 2023
* Revise steps * Fixed tables * Clean up steps, improve flow * Add info based on prototype. * Verify steps, add resources * Several small changes * Add links to existing OIDC documentation * Add links to other docs * Last changes from final workflow walkthrough * Updates for internal style, grammar: add aws acct * Fix repeated 'the' * Vale fixes * Incorporate first comments * Revise info block, add link * Added review comments * Fix typo in policy name * Revised KMS key creation section * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Apply suggestions from code review Co-authored-by: Karl Cardenas <[email protected]> * Incorporate review comments for KMS key * Fix typo * Create new page for KMS key * Add Access EKS Cluster section * Minor change to Access EKS Cluster * Replace kubelogin prereq w. aws-iam-authenticator * Revised Access EKS Cluster, step 9, prereqs * docs: updates and clarifications * Fix typo --------- Co-authored-by: Karl Cardenas <[email protected]>
ritawatson
added a commit
that referenced
this pull request
Nov 8, 2023
* Revise steps * Fixed tables * Clean up steps, improve flow * Add info based on prototype. * Verify steps, add resources * Several small changes * Add links to existing OIDC documentation * Add links to other docs * Last changes from final workflow walkthrough * Updates for internal style, grammar: add aws acct * Fix repeated 'the' * Vale fixes * Incorporate first comments * Revise info block, add link * Added review comments * Fix typo in policy name * Revised KMS key creation section * Apply suggestions from code review * Apply suggestions from code review * Incorporate review comments for KMS key * Fix typo * Create new page for KMS key * Add Access EKS Cluster section * Minor change to Access EKS Cluster * Replace kubelogin prereq w. aws-iam-authenticator * Revised Access EKS Cluster, step 9, prereqs * docs: updates and clarifications * Fix typo --------- Co-authored-by: Karl Cardenas <[email protected]>
2 tasks
Merged
2 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Describe the Change
This PR cleans up the EKS user journey doc. It includes the following:
This PR also adds use case information about private IP CIDRs in EKS clusters.
In addition, some quick cleanup is done in the Add AWS account doc to fix grammar and follow our internal style.
Review Changes
💻 Preview URL
🎫 PEM-2574
🎫 PCP-1982