On a k8s cluster, the sidecar has the ability to access the AWS manager in the following ways:
- Using an AWS access key and secret key
- Using an fine-grained pod level assignment of an IAM role
Alternatively, you can use Vault secrets management for Cyral in a Kubernetes-automated, AWS environment.