From 8fd1cf6d093a6fd1f42916d54ebc7f80b8596d44 Mon Sep 17 00:00:00 2001
From: Pier-Olivier Thibault <23230+pier-oliviert@users.noreply.github.com>
Date: Thu, 27 Jun 2024 09:56:50 -0400
Subject: [PATCH] Add configuration option for non-eks with Helm

---
 docs/tutorials/aws.md | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/docs/tutorials/aws.md b/docs/tutorials/aws.md
index 360d8c7a65..839946aa1f 100644
--- a/docs/tutorials/aws.md
+++ b/docs/tutorials/aws.md
@@ -477,7 +477,7 @@ kubectl create --filename externaldns-no-rbac.yaml \
 
 ### When using clusters with RBAC enabled
 
-Update the `values.yaml` file you created earlier to include the annotations to link the Role ARN you created before.
+If you're using EKS, you can update the `values.yaml` file you created earlier to include the annotations to link the Role ARN you created before.
 
 ```yaml
 provider:
@@ -487,6 +487,26 @@ serviceAccount:
     eks.amazonaws.com/role-arn: arn:aws:iam::${ACCOUNT_ID}:role/${EXTERNALDNS_ROLE_NAME:-"external-dns"}
 ```
 
+&nbsp;
+
+If you need to provide credentials directly using a secret (ie. You're not using EKS), you can change the `values.yaml` file to include volume and volume mounts.
+
+```yaml
+provider:
+  name: aws
+env:
+  - name: AWS_SHARED_CREDENTIALS_FILE
+    value: /.aws/credentials
+extraVolumes:
+  - name: aws-credentials
+    secret:
+      secretName: external-dns
+extraVolumeMounts:
+  - name: aws-credentials
+    mountPath: /.aws
+    readOnly: true
+```
+
 When ready deploy, update your Helm installation:
 
 ```shell