AWS::EKS::Cluster Provider - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::EKS::Cluster Provider

Identifies the Amazon Key Management Service (Amazon KMS) key used to encrypt the secrets.


To declare this entity in your Amazon CloudFormation template, use the following syntax:


{ "KeyArn" : String }


KeyArn: String



Amazon Resource Name (ARN) or alias of the KMS key. The KMS key must be symmetric and created in the same Amazon Web Services Region as the cluster. If the KMS key was created in a different account, the IAM principal must have access to the KMS key. For more information, see Allowing users in other accounts to use a KMS key in the Amazon Key Management Service Developer Guide.

Required: No

Type: String

Update requires: Replacement