I am trying to bring up EKS cluster using Terraform EKS blueprint and it creates both clsuter and node security groups. As per AWS documentation, EKS creates the SG tag kubernetes.io/cluster by default on both the SGs. I need to remove the tag using the terraform. Is there a way to do it?
Based on your question and your answers in the comment section, you could be using the previous version (18?) of terraform-aws-eks which has this issue. The redundant tag can be remove:
node_security_group_tags = {
"kubernetes.io/cluster/${<your cluster name variable>}" = null
}
Here's the in-depth explanation.