En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

What is degraded state in EKS ?

0

I read this page https://docs.aws.amazon.com/eks/latest/userguide/enable-kms.html, it says that

If you enable secrets encryption for an existing cluster and the KMS key that you use is ever deleted, then there's no way to recover the cluster. If you delete the KMS key, you permanently put the cluster in a degraded state.

My question is what does degraded state means ?

Sujets
Sécurité, identité et conformitéConteneursFramework AWS Well-ArchitectedGestion et gouvernance
Balises
Service AWS Key ManagementService Amazon Elastic KubernetesSécuritéAWS Account Management
Langue
English
apriliopajri
demandé il y a un an286 vues
1 réponse
0

I think it means that the EKS cluster can't perform all of its functions, such as creating new Kubernetes secrets and running pods. You can't create a new Kubernetes secret and encrypt it, and the pods running inside the cluster can't decrypt the Kubernetes secrets as the existing KMS key is deleted.

So, you would have to create a new EKS cluster with a new KMS key.

Sivaraman
répondu il y a un an

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents