Applying the AWS ConfigMap to Enable Worker Nodes to Join the Cluster

The AWS ConfigMap needs to be applied so that the worker nodes can join your EKS cluster.

1. Connect to the bastion host.
2. Open the file the cm-aws-auth.yaml in any text editor. (The file is from the unpacked arcsight-platform-cloud-installer-XX.X.X.XXX.zip located in the directory /aws-scripts/objectdefs).
3. Replace the placeholder ${WORKERS_ROLE_ARN} with the Role ARN value from your AWS worksheet, and then save your changes. The ConfigMap will then resemble the following example:

apiVersion: v1
kind: ConfigMap
metadata:
name: aws-auth
namespace: kube-system
data:
mapRoles: |
- rolearn: arn:aws:iam::115370848038:role/srgdemo-workernodes-svc-role	
username: system:node:{{EC2PrivateDNSName}}
groups:
- system:bootstrappers
- system:nodes

4. On the bastion, run the following command:
   

   # kubectl apply -f cm-aws-auth.yaml

5. This command will output:
   

   configmap/aws-auth created.

Next Step: Create and Configure Worker Nodes