-
Open the Amazon EKS console at https://console.aws.amazon.com/eks/home#/clusters.
-
Select the name of your cluster.
-
In the Details section on the Overview tab, note the value of the OpenID Connect provider URL.
-
Open the IAM console at https://console.aws.amazon.com/iam/.
-
In the left navigation pane, choose Identity Providers under Access management. If a Provider is listed that matches the URL for your cluster, then you already have a provider for your cluster. If a provider isn't listed that matches the URL for your cluster, then you must create one.
-
To create a provider, choose Add Provider.
-
For Provider Type, choose OpenID Connect.
-
For Provider URL, paste the OIDC issuer URL for your cluster, and then choose Get thumbprint.
-
For Audience, enter
sts.amazonaws.com
and choose Add provider.