Delete access entries - Amazon EKS
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Help improve this page

Want to contribute to this user guide? Choose the Edit this page on GitHub link that is located in the right pane of every page. Your contributions will help make our user guide better for everyone.

Delete access entries

If you discover that you deleted an access entry in error, you can always recreate it. If the access entry that you’re deleting is associated to any access policies, the associations are automatically deleted. You don’t have to disassociate access policies from an access entry before deleting the access entry.

You can delete an access entry using the Amazon Web Services Management Console or the Amazon CLI.

Amazon Web Services Management Console

  1. Open the Amazon EKS console.

  2. Choose the name of the cluster that you want to delete an access entry from.

  3. Choose the Access tab.

  4. In the Access entries list, choose the access entry that you want to delete.

  5. Choose Delete.

  6. In the confirmation dialog box, choose Delete.

Amazon CLI

  1. Install the Amazon CLI, as described in Installing in the Amazon Command Line Interface User Guide.

  2. To delete an access entry Replace my-cluster with the name of your cluster, 111122223333 with your Amazon account ID, and my-role with the name of the IAM role that you no longer want to have access to your cluster.

    aws eks delete-access-entry --cluster-name my-cluster --principal-arn arn:aws-cn:iam::111122223333:role/my-role