Amazon Elastic Kubernetes Service - AWS GovCloud (US)

Amazon Elastic Kubernetes Service

Amazon Elastic Kubernetes Service (Amazon EKS) is a managed service that makes it easy for you to run Kubernetes on AWS without needing to stand up or maintain your own Kubernetes control plane. Kubernetes is an open-source system for automating the deployment, scaling, and management of containerized applications.

How Amazon EKS Differs for AWS GovCloud (US)

  • Amazon EKS on Fargate is not available in AWS GovCloud (US).

  • Public DNS resolution of EKS cluster private endpoint is not available in AWS GovCloud (US).

Documentation for Amazon EKS

Amazon EKS documentation.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in AWS GovCloud (US) Regions. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in AWS GovCloud (US) Regions, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted

ITAR-Regulated Data Not Permitted

  • All data entered, stored, and processed within Amazon EKS in GovCloud can contain ITAR-regulated data.

  • Do not enter ITAR-regulated data in the following fields:

    • Cluster name

    • Fargate profile name

    • Node group name

If you are processing ITAR-regulated data with this service, use the SSL (HTTPS) endpoint to maintain ITAR compliance. For a list of endpoints, see Service Endpoints.