Home icon

How to manage EKS Pod Identities at scale using Argo CD and AWS ACK

Containers Blog

This article provides a comprehensive guide on managing EKS Pod Identities at scale using Argo CD and AWS Controllers for Kubernetes (ACK), addressing challenges with IAM role associations in Kubernetes environments.

  • EKS Pod Identity simplifies IAM permissions management for Kubernetes applications
  • The article demonstrates how to address the eventually consistent nature of the EKS Pod Identity API
  • Two primary solutions are proposed:
    • Using a validation job to verify IAM role configuration
    • Adjusting sync wave delay (with potential performance implications)
  • Key technologies used include:
    • Argo CD for GitOps workflow
    • AWS Controllers for Kubernetes (ACK)
    • EKS Pod Identity Agent

The approach provides a reliable method for automating application deployments with specific IAM permissions while maintaining GitOps best practices.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Related articles

Mar 10
2025
Simplifying IAM Permissions for Amazon EKS Addons with EKS Pod Identity
Jun 12
2025
Amazon EKS Pod Identity simplifies the experience for cross-account access
Dec 28
2023
Amazon EKS Pod Identity: a new way for applications on EKS to obtain IAM credentials
Jun 12
2025
Amazon EKS Pod Identity streamlines cross account access

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.