Amazon EKS Enables Support for Kubernetes Dynamic Admission Controllers

Posted on: Oct 12, 2018

Amazon Elastic Container Service for Kubernetes (EKS) now supports dynamic admission controllers, allowing customers to deploy custom webhooks that enable additional open source tools for controlling network traffic and monitoring Kubernetes clusters on AWS.

Admissions controllers are a Kubernetes construct that allow you to run a piece of code after an API request has been authenticated and authorized, but before an object's state within the Kubernetes cluster is stored. Dynamic admission controllers allow you to accept, reject, or alter admission requests.

Previously, you could not use dynamic admission controllers with Amazon EKS. This meant that it was not possible to use software tools that require automatic sidecar injection with your Kubernetes clusters managed by EKS.

Now, Amazon EKS supports dynamic admission controllers. This enables you to use Amazon EKS with open source tools like Istio, which uses dynamic admission controllers to perform automatic sidecar injection of the Envoy proxy onto your Kubernetes pods.

To get started with Admission Webhooks, see the Kubernetes documentation. To learn more about using dynamic admission controllers with Amazon EKS, see the Amazon EKS documentation.

Please visit the AWS region table to see all AWS regions where Amazon EKS is available.