Teleport Expands EKS Support For Identity Security

12 Nov 2025

Teleport has announced an expansion of its Identity Security product to include enhanced support for the Amazon Elastic Kubernetes Service (EKS).

Unveiled at KubeCon + CloudNativeCon in Atlanta, this integration offers organizations increased visibility into EKS cluster activities, crucial for identifying issues such as shadow access and privilege escalation within managed Kubernetes environments.

Enhanced Security for Amazon EKS

The enriched EKS support will be showcased by Teleport at KubeCon, emphasizing how engineering and security teams can unify access intelligence across AWS and Kubernetes to bolster Zero Trust security architectures.

This new integration enhances Teleport’s Access Graph and Investigate capabilities by incorporating EKS-specific audit logs. As a result, users can visualize Kubernetes cluster access and actions, even when AWS credentials, rather than Teleport, are used.

“Organizations running Amazon EKS have struggled to gain a unified view of access activity across their cloud and Kubernetes layers,” said Ben Arent, Director of Product for Teleport. “By consolidating Amazon EKS audit data into Teleport Identity Security - Identity Activity Center, we help customers expose and eliminate hidden identity risks — from shadow user access to users abusing service accounts — before they become incidents.”

Integrating AWS IAM for Comprehensive Visibility

Kubernetes security tools emphasized policy enforcement without providing full insight into cluster usage

Previously, Kubernetes security tools emphasized policy enforcement without providing full insight into cluster usage. Traditional audit trails and session recordings fell short in uncovering alternative access pathways within complex cloud environments.

The new Amazon EKS Audit Log Integration by Teleport enriches AWS CloudWatch telemetry with identity information from AWS Identity and Access Management (IAM) and enterprise identity providers. This integration allows for detailed correlation of user identities across systems, ensuring EKS environment actions can be tracked to verified individuals.

Advantages for Platform and Security Teams

The EKS Identity Security enhancements offer platform and security teams the ability to:

Visualize cluster access routes using the Teleport Access Graph
Investigate activities across AWS, Teleport Zero-Trust Access, and Amazon EKS via a unified interface
Detect shadow access and identity-based anomalies in real time
Demonstrate access control enforcement for compliance and audit readiness

These features lead to streamlined compliance, a strengthened security stance, and enhanced collaboration between platform engineering and security operations teams.

Availability Timeline

The enhanced security features for Amazon EKS will be available for on-premises Teleport deployments starting in November 2025.

Support for Teleport Cloud will follow in the fourth quarter, as part of a minor version update to Teleport 18.

Show full press release

KubeCon + CloudNativeCon in Atlanta, Teleport, the pioneer in Infrastructure Identity, announced expanded support for Amazon Elastic Kubernetes Service (EKS) within its Identity Security product. The new integration provides organizations with unprecedented visibility into Amazon EKS cluster activity, enabling teams to identify shadow access, privilege escalation, and identity-based risks across their managed Kubernetes environments.

Teleport’s enhanced EKS support debuts at KubeCon, where the company will showcase how engineering and security teams can unify access intelligence across AWS and Kubernetes to strengthen Zero Trust architectures.

Bringing identity-aware security to Amazon EKS

The new Amazon EKS integration extends Teleport’s Access Graph and Investigate capabilities to include EKS-specific audit logs, enabling users to visualize who has access to Kubernetes clusters and what actions are being taken, even when access occurs through AWS credentials rather than through Teleport directly.

Identity context from AWS IAM

Until now, traditional Kubernetes security tools have focused on enforcing access policies without full visibility into how clusters are being used. While audit trails and session recordings provided some coverage, they couldn’t expose alternative access pathways or unaudited activity in complex cloud environments.

Teleport’s new Amazon EKS Audit Log Integration pulls telemetry from AWS CloudWatch, enriching it with identity context from AWS Identity and Access Management (IAM) and enterprise identity providers. This holistic view lets teams correlate user identities across systems, ensuring that every action in an EKS environment can be tied back to a verified individual.

Benefits for platform and security teams

With EKS Identity Security, teams can now:

Visualize cluster access paths through the Teleport Access Graph
Investigate activity across AWS, Teleport Zero-Trust Access and Amazon EKS in a single unified view
Detect shadow access and identity-based anomalies in real time
Prove access control enforcement for compliance and audit readiness

The result is simplified compliance, stronger security posture, and improved collaboration between platform engineering and security operations teams.

Availability

The Amazon EKS Identity Security enhancements will be available for on-premises Teleport deployments in November 2025, with Teleport Cloud support following in Q4 as part of minor version update to Teleport 18.

Download PDF version Download PDF version

Add as a preferred source on Google