...
Engine Type | Minimum Nodes | Instance Type | Authentication |
DocumentDB 4.x | 2 (1 Reader + 1 Writer) | Minimum db.r5.xlarge | Username/Password or IAM Auth |
Security Groups
The Scope AR Content Management System (CMS) and Worklink Create (Authoring Tool) must connect to this database, requiring an inbound security group rule on the DocumentDB instances to allow traffic from the Kubernetes worker nodes. All connections to DocumentDB will originate from the private Kubernetes worker nodes. There are no requirements for public access.
Authentication
AWS DocumentDB provides two authentication methods: username/password and IAM authentication. Scope AR supports both of these methods. Please refer to this article for detailed steps for setting up IAM authentication:
...
| Info |
|---|
Note: The IAM permissions explained in this document must be added to the EKS Role ARNs for the CMS and Worklink Create services. See Configuring values.yaml for more information. |