https://pulumi.com logo
#aws
Title
i

incalculable-engineer-92975

05/20/2020, 6:51 PM
When creating an EKS cluster, a Security Group is created implicitly. How do I replace or specify that group? We've tried using a Transform - and that works - but it only lets you modify the existing group. For auditing purposes what we want is to use a predefined SG - to replace the implicit SG.
s

sparse-state-34229

05/20/2020, 6:55 PM
Copy code
self.cluster = eks.Cluster(
            self.name,
            name=self.name,
            role_arn=self.account_output.require_output(
                "iam.roles.eks-cluster"
            ),
            tags=self.tags,
            vpc_config={
                "endpoint_private_access": True,
                "endpoint_public_access": True,
                "security_group_ids": [eks_sg.id],
                "subnet_ids": eks_cluster_subnets,
            },
            opts=ResourceOptions(parent=self),
        )
formatting is bad, but that should help
oh that reminds me I need to disable the public endpoint now
i

incalculable-engineer-92975

05/20/2020, 7:35 PM
ahh... the version we're using is old - we'll have to upgrade
👍 1