AWS re:Invent 2025 - Simplify your Kubernetes journey with Amazon EKS Capabilities (CNS378)

Simplifying the Kubernetes Journey with Amazon EKS Capabilities

Abstracting Complexity with Kubernetes

• Kubernetes provides a powerful abstraction for distributed computing, democratizing scaled, complex systems
• However, Kubernetes itself is not a simple technology, with around 1,500 methods compared to 10,000 in the AWS SDK
• Amazon EKS aims to make Kubernetes more accessible to AWS customers by providing a managed control plane and evolving the service over time

Scaling Kubernetes with EKS

• EKS started with a managed control plane and has since added features like self-managed nodes, managed node groups, and fully managed "auto mode" clusters
• As customers scale their Kubernetes usage, they often encounter challenges around consistency, governance, and operational overhead across multiple clusters and accounts
• Many customers invest in dedicated platform engineering teams to abstract away these complexities and provide a consistent, scalable Kubernetes platform

Introducing EKS Capabilities

• EKS Capabilities is a new feature layer that extends EKS clusters with managed, AWS-integrated platform services
• The goal is to reduce friction and operational overhead as customers scale their Kubernetes usage
• EKS Capabilities are based on well-known open-source projects and standards, making them portable and extensible

Argo CD for GitOps Automation

• Argo CD is a GitOps-based continuous deployment tool, with EKS Capabilities providing deep AWS integrations
• EKS Argo CD automatically authenticates with AWS services like ECR, CodeCommit, and CodeConnections, simplifying credential management
• Argo CD can be used to deploy applications across multiple EKS clusters, with the networking and connectivity managed by EKS Capabilities

ACK for Infrastructure Provisioning

• ACK (AWS Controllers for Kubernetes) allows managing AWS resources using Kubernetes custom resources
• EKS Capabilities integrates ACK, providing sophisticated IAM role selectors for multi-tenant, cross-region resource management
• Developers can define infrastructure resources declaratively, with the platform team encoding best practices into the resource definitions

Crossplane for Platform Abstractions

• Crossplane (also known as Crow) allows platform teams to create custom Kubernetes APIs by composing existing resources
• This enables the platform team to provide higher-level, opinionated abstractions for developers, hiding the underlying complexity
• Crossplane supports features like cell expressions for conditional logic and resource ordering to ensure proper dependencies

Key Takeaways

• EKS Capabilities provide deep AWS integration and sophisticated management patterns not available in self-managed solutions
• The three initial capabilities (Argo CD, ACK, Crossplane) work together to enable modern platform engineering on AWS
• Careful consideration is needed around operational models, multi-cluster designs, and IAM/RBAC permissions when adopting EKS Capabilities
• EKS Capabilities aim to reduce friction and operational overhead, allowing teams to focus on building and shipping software faster and safer

Additional Resources

• EKS Capabilities documentation and blogs
• EKS Builder session and workshops at re:Invent
• EKS Workshop and EKS Blueprints learning materials