Create an Argo CD capability using the Console - Amazon EKS
PrerequisitesCreate the Argo CD capabilityVerify the capability is activeAccess the Argo CD UINext steps
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Help improve this page

To contribute to this user guide, choose the Edit this page on GitHub link that is located in the right pane of every page.

Create an Argo CD capability using the Console

This topic describes how to create an Argo CD capability using the Amazon Web Services Management Console.

Prerequisites

  • Amazon Identity Center configured – Argo CD requires Amazon Identity Center for authentication. Local users are not supported. If you don’t have Amazon Identity Center set up, see Getting started with Amazon Identity Center to create an Identity Center instance, and Add users and Add groups to create users and groups for Argo CD access.

Create the Argo CD capability

  1. Open the Amazon EKS console at https://console.aws.amazon.com/eks/home#/clusters.

  2. Select your cluster name to open the cluster detail page.

  3. Choose the Capabilities tab.

  4. In the left navigation, choose Argo CD.

  5. Choose Create Argo CD capability.

  6. For IAM Capability Role:

    • If you already have an IAM Capability Role, select it from the dropdown

    • If you need to create a role, choose Create Argo CD role

      This opens the IAM console in a new tab with pre-populated trust policy and full read access to Secrets Manager. No other permissions are added by default, but you can add them if needed. If you plan to use CodeCommit repositories or other Amazon services, add the appropriate permissions before creating the role.

      After creating the role, return to the EKS console and the role will be automatically selected.

      Note

      If you plan to use the optional integrations with Amazon Secrets Manager or Amazon CodeConnections, you’ll need to add permissions to the role. For IAM policy examples and configuration guidance, see Manage application secrets with Amazon Secrets Manager and Connect to Git repositories with Amazon CodeConnections.

  7. Configure Amazon Identity Center integration:

    1. Select Enable Amazon Identity Center integration.

    2. Choose your Identity Center instance from the dropdown.

    3. Configure role mappings for RBAC by assigning users or groups to Argo CD roles (ADMIN, EDITOR, or VIEWER)

  8. Choose Create.

The capability creation process begins.

Verify the capability is active

  1. On the Capabilities tab, view the Argo CD capability status.

  2. Wait for the status to change from CREATING to ACTIVE.

  3. Once active, the capability is ready to use.

For information about capability statuses and troubleshooting, see Working with capability resources.

Access the Argo CD UI

After the capability is active, you can access the Argo CD UI:

  1. On the Argo CD capability page, choose Open Argo CD UI.

  2. The Argo CD UI opens in a new browser tab.

  3. You can now create Applications and manage deployments through the UI.

Next steps