Tag: Linux

Customers who are building their “Golden Image” HAQM Machine Images (AMIs) using EC2 Image Builder may wish to extend their Image Builder pipelines to build out their HAQM Elastic Kubernetes Service (HAQM EKS) worker nodes as well. In this blog, we will show you how to do this and provide you with AWS CloudFormation templates […]

Introduction HAQM Elastic Kubernetes Services (HAQM EKS) provides excellent abstraction from managing the Kubernetes control plane and data plane nodes that are responsible for operating and managing a cluster. AWS offers managed HAQM Machine Images, or AMIs, for HAQM Linux 2, Bottlerocket, and Windows Server. Many customers have requirements, or simply prefer, to use Red […]

UPDATE: On July 17th 2023, AWS launched support for Windows authentication with gMSA on non-domain-joined (domainless) HAQM ECS Linux container instances. This blog post has been updated to cover both modes, making domainless mode the default. Introduction Today, we are announcing the availability of Credentials Fetcher integration with HAQM Elastic Container Service (HAQM ECS). This […]

Introduction The Center for Internet Security (CIS) Benchmarks are best practices for the secure configuration of a target system. They define various Benchmarks for Kubernetes control plane and the data plane. For HAQM EKS clusters, it is strongly recommended to follow the CIS HAQM EKS Benchmark. If the data plane of an HAQM EKS cluster uses HAQM Linux […]

With the recent launch of Bottlerocket support for Managed Node Groups in HAQM Elastic Kubernetes Service (HAQM EKS), I wanted to take the opportunity to talk about Bottlerocket and its features. At a previous point in my career, I was one of many engineers working on a commercial UNIX operating system. Linux established itself as […]

Containers are a de facto standard in cloud application development and deployment. Publishing software in container images provides developers an integrated packaging solution, bundling software and all required dependencies into a portable image format. This image can then be run anywhere, abstracting away the infrastructure-specific aspects of deployment. However, the promise of running anywhere only […]

On March 10, 2020, we introduced Bottlerocket, a new special-purpose operating system designed for hosting Linux containers. In this post, I want to take you through some of the goals we started with, engineering choices we made along the way, and our vision for how the OS will continue to evolve in the future. In […]