[EKS] [Feature]: Allow custom KMS keys to encrypt worker node root volume

[dawidmalina]

Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Which service(s) is this request for?
EKS

Tell us about the problem you're trying to solve. What are you trying to do, and why is it hard?
Currently, the Managed Node Groups for EKS are encrypted using AWS controlled KMS keys.

However, some users may prefer to implement their own KMS keys for compliance purposes. It seems this currently isn't possible. This would be a useful feature for users who are interested in adopting Managed Node Groups for EKS but require control over encryption keys for compliance reasons.

[apicht]

Currently, the Managed Node Groups for EKS are encrypted using AWS controlled KMS keys.

Where is this documented? Looking at the console the worker volumes show as "Not Encrypted"

[mikestef9]

Closing as this feature request is addressed by launch template support. See #585 for details!