What's New?

Unreleased

v0.14.5

Fixed

Fix kubectl get call to point to full API name (#5342 )
Expand all kubectl calls to fully qualified names (#5347 )

v0.14.4

Added

--no-timeouts flag in create and upgrade commands to disable timeout for all wait operations
Management resources backup procedure with clusterctl

v0.14.3

Added

--aws-region flag to copy packages command.

Upgraded

CAPAS from v0.1.22 to v0.1.24.

v0.14.2

Added

Enabled support for Kubernetes version 1.25

v0.14.1

Added

support for authenticated pulls from registry mirror (#4796 )
option to override default nodeStartupTimeout in machine health check (#4800 )
Validate control plane endpoint with pods and services CIDR blocks(#4816 )

Fixed

Fixed a issue where registry mirror settings weren’t being applied properly on Bottlerocket nodes for Tinkerbell provider

v0.14.0

Added

Add support for EKS Anywhere on AWS Snow (#1042 )
Static IP support for BottleRocket (#4359 )
Add registry mirror support for curated packages
Add copy packages command (#4420 )

Fixed

Improve management cluster name validation for workload clusters

v0.13.1

Added

Multi-region support for all supported curated packages

Fixed

Fixed nil pointer in eksctl anywhere upgrade plan command

v0.13.0

Added

Workload clusters full lifecycle API support for vSphere and Docker (#1090 )
Single node cluster support for Bare Metal provider
Cilium updated to version v1.11.10
CLI high verbosity log output is automatically included in the support bundle after a CLI cluster command error (#1703 implemented by #4289 )
Allow to configure machine health checks timeout through a new flag --unhealthy-machine-timeout (#3918 implemented by #4123 )
Ability to configure rolling upgrade for Bare Metal and Cloudstack via maxSurge and maxUnavailable parameters
New Nutanix Provider
Workload clusters support for Bare Metal
VM Tagging support for vSphere VM’s created in the cluster (#4228 )
Support for new curated packages:
- Prometheus v2.39.1
Updated curated packages' versions:
- ADOT v0.23.0 upgraded from v0.21.1
- Emissary v3.3.0 upgraded from v3.0.0
- Metallb v0.13.7 upgraded from v0.13.5
Support for packages controller to create target namespaces #601
(For more EKS Anywhere packages info: v0.13.0 )

Fixed

Kubernetes version upgrades from 1.23 to 1.24 for Docker clusters (#4266 )
Added missing docker login when doing authenticated registry pulls

Breaking changes

Removed support for Kubernetes 1.20

v0.12.2

Added

Add support for Kubernetes 1.24 (CloudStack support to come in future releases)#3491

Fixed

Fix authenticated registry mirror validations
Fix capc bug causing orphaned VM’s in slow environments
Bundle activation problem for package controller

v0.12.1

Changed

Setting minimum wait time for nodes and machinedeployments (#3868, fixes #3822)

Fixed

Fixed worker node count pointer dereference issue (#3852)
Fixed eks-anywhere-packages reference in go.mod (#3902)
Surface dropped error in Cloudstack validations (#3832)

v0.12.0

⚠️ Breaking changes

Certificates signed with SHA-1 are not supported anymore for Registry Mirror. Users with a registry mirror and providing a custom CA cert will need to rotate the certificate served by the registry mirror endpoint before using the new EKS-A version. This is true for both new clusters (create cluster command) and existing clusters (upgrade cluster command).
The --source option was removed from several package commands. Use either --kube-version for registry or --cluster for cluster.

Added

Add support for EKS Anywhere with provider CloudStack
Add support to upgrade Bare Metal cluster
Add support for using Registry Mirror for Bare Metal
Redhat-based node image support for vSphere, CloudStack and Bare Metal EKS Anywhere clusters
Allow authenticated image pull using Registry Mirror for Ubuntu on vSphere cluster
Add option to disable vSphere CSI driver #3148
Add support for skipping load balancer deployment for Bare Metal so users can use their own load balancers #3608
Add support to configure aws-iam-authenticator on workload clusters independent of management cluster #2814
Add EKS Anywhere Packages support for remote management on workload clusters. (For more EKS Anywhere packages info: v0.12.0 )
Add new EKS Anywhere Packages
- AWS Distro for OpenTelemetry (ADOT)
- Cert Manager
- Cluster Autoscaler
- Metrics Server

Fixed

Remove special cilium network policy with policyEnforcementMode set to always due to lack of pod network connectivity for vSphere CSI
Fixed #3391 #3560 for AWSIamConfig upgrades on EKS Anywhere workload clusters

v0.11.4

Added

Add validate session permission for vsphere

Fixed

Fix datacenter naming bug for vSphere #3381
Fix os family validation for vSphere
Fix controller overwriting secret for vSphere #3404
Fix unintended rolling upgrades when upgrading from an older EKS-A version for CloudStack

v0.11.3

Added

Add some bundleRef validation
Enable kube-rbac-proxy on CloudStack cluster controller’s metrics port

Fixed

Fix issue with fetching EKS-D CRDs/manifests with retries
Update BundlesRef when building a Spec from file
Fix worker node upgrade inconsistency in Cloudstack

v0.11.2

Added

Add a preflight check to validate vSphere user’s permissions #2744

Changed

Make DiskOffering in CloudStackMachineConfig optional

Fixed

Fix upgrade failure when flux is enabled #3091 #3093
Add token-refresher to default images to fix import/download images commands
Improve retry logic for transient issues with kubectl applies and helm pulls #3167
Fix issue fetching curated packages images

v0.11.1

Added

Add --insecure flag to import/download images commands #2878

v0.11.0

Breaking Changes

EKS Anywhere no longer distributes Ubuntu OVAs for use with EKS Anywhere clusters. Building your own Ubuntu-based nodes as described in Building node images is the only supported way to get that functionality.

Added

Add support for Kubernetes 1.23 #2159
Add support for Support Bundle for validating control plane IP with vSphere provider
Add support for aws-iam-authenticator on Bare Metal
Curated Packages General Availability
Added Emissary Ingress Curated Package

Changed

Install and enable GitOps in the existing cluster with upgrade command

v0.10.1

Changed

Updated EKS Distro versions to latest release

Fixed

Fixed control plane nodes not upgraded for same kube version #2636

v0.10.0

Added

Added support for EKS Anywhere on bare metal with provider tinkerbell . EKS Anywhere on bare metal supports complete provisioning cycle, including power on/off and PXE boot for standing up a cluster with the given hardware data.
Support for node CIDR mask config exposed via the cluster spec. #488

Changed

Upgraded cilium from 1.9 to 1.10. #1124
Changes for EKS Anywhere packages v0.10.0

Fixed

Fix issue using self-signed certificates for registry mirror #1857

v0.9.2

Fixed

Fix issue by avoiding processing Snow images when URI is empty

v0.9.1

v0.9.0

Added

Adding support to EKS Anywhere for a generic git provider as the source of truth for GitOps configuration management. #9
Allow users to configure Cloud Provider and CSI Driver with different credentials. #1730
Support to install, configure and maintain operational components that are secure and tested by Amazon on EKS Anywhere clusters.#2083
A new Workshop section has been added to EKS Anywhere documentation.
Added support for curated packages behind a feature flag #1893

Fixed

Fix issue specifying proxy configuration for helm template command #2009

v0.8.2

Fixed

Fix issue with upgrading cluster from a previous minor version #1819

v0.8.1

Fixed

Fix issue with downloading artifacts #1753

v0.8.0

Added

SSH keys and Users are now mutable #1208
OIDC configuration is now mutable #676
Add support for Cilium’s policy enforcement mode #726

Changed

Install Cilium networking through Helm instead of static manifest

v0.7.2 - 2022-02-28

Fixed

Fix issue with downloading artifacts #1327

v0.7.1 - 2022-02-25

Added

Support for taints in worker node group configurations #189
Support for taints in control plane configurations #189
Support for labels in worker node group configuration #486
Allow removal of worker node groups using the eksctl anywhere upgrade command #1054

v0.7.0 - 2022-01-27

Added

Support for aws-iam-authenticator as an authentication option in EKS-A clusters #90
Support for multiple worker node groups in EKS-A clusters #840
Support for IAM Role for Service Account (IRSA) #601
New command upgrade plan cluster lists core component changes affected by upgrade cluster #499
Support for workload cluster’s control plane and etcd upgrade through GitOps #1007
Upgrading a Flux managed cluster previously required manual steps. These steps have now been automated. #759 , #1019
Cilium CNI will now be upgraded by the upgrade cluster command #326

Changed

EKS-A now uses Cluster API (CAPI) v1.0.1 and v1beta1 manifests, upgrading from v0.3.23 and v1alpha3 manifests.
Kubernetes components and etcd now use TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 as the configured TLS cipher suite #657 , #759
Automated git repository structure changes during Flux component upgrade workflow #577

v0.6.0 - 2021-10-29

Added

Support to create and manage workload clusters #94
Support for upgrading eks-anywhere components #93 , Cluster upgrades
- IMPORTANT: Currently upgrading existing flux manged clusters requires performing a few additional steps . The fix for upgrading the existing clusters will be published in 0.6.1 release to improve the upgrade experience.
k8s CIS compliance #193
Support bundle improvements #92
Ability to upgrade control plane nodes before worker nodes #100
Ability to use your own container registry #98
Make namespace configurable for anywhere resources #177

Fixed

Fix ova auto-import issue for multi-datacenter environments #437
OVA import via EKS-A CLI sometimes fails #254
Add proxy configuration to etcd nodes for bottlerocket #195

Removed

overrideClusterSpecFile field in cluster config

v0.5.0

Added

Initial release of EKS-A