aws
diff --git a/‎.github/workflows/analytics-metadata-updater.yml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/analytics-metadata-updater.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/lambda-runtime-tests.yml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/lambda-runtime-tests.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎packages/@aws-cdk/aws-eks-v2-alpha/README.md‎
Lines changed: 16 additions & 0 deletions b/‎packages/@aws-cdk/aws-eks-v2-alpha/README.md‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎packages/@aws-cdk/aws-eks-v2-alpha/lib/cluster.ts‎
Lines changed: 4 additions & 1 deletion b/‎packages/@aws-cdk/aws-eks-v2-alpha/lib/cluster.ts‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎packages/@aws-cdk/aws-eks-v2-alpha/test/automode.test.ts‎
Lines changed: 37 additions & 0 deletions b/‎packages/@aws-cdk/aws-eks-v2-alpha/test/automode.test.ts‎
Lines changed: 37 additions & 0 deletions
diff --git a/‎packages/@aws-cdk/aws-eks-v2-alpha/test/integ.eks-auto.js.snapshot/asset.1c5a2ab1d1e53b0672a644454aab3dbb258ccd0079c92ad0e23b95b2c2079f70.zip‎
17.8 MB b/‎packages/@aws-cdk/aws-eks-v2-alpha/test/integ.eks-auto.js.snapshot/asset.1c5a2ab1d1e53b0672a644454aab3dbb258ccd0079c92ad0e23b95b2c2079f70.zip‎
17.8 MB
diff --git a/‎packages/@aws-cdk/aws-eks-v2-alpha/test/integ.eks-auto.js.snapshot/asset.737d25a30d9f795cb0e9b1e4b28259ffb509944c4918bdd11c2d9bcee3fba68a.zip‎
32.8 MB b/‎packages/@aws-cdk/aws-eks-v2-alpha/test/integ.eks-auto.js.snapshot/asset.737d25a30d9f795cb0e9b1e4b28259ffb509944c4918bdd11c2d9bcee3fba68a.zip‎
32.8 MB
diff --git a/‎packages/@aws-cdk/aws-eks-v2-alpha/test/integ.eks-auto.js.snapshot/eks-auto-mode-empty-nodepools-stack.assets.json‎
Lines changed: 90 additions & 0 deletions b/‎packages/@aws-cdk/aws-eks-v2-alpha/test/integ.eks-auto.js.snapshot/eks-auto-mode-empty-nodepools-stack.assets.json‎
Lines changed: 90 additions & 0 deletions
@@ -7,7 +7,7 @@ on:
 
 jobs:
   update-analytics-metadata:
-    if: github.repository == 'aws/aws-cdk'
+    if: github.repository == 'aws/aws-cdk' && github.actor == 'aws-cdk-automation'
     runs-on: ubuntu-latest
     permissions:
       contents: write
 
@@ -6,7 +6,7 @@ on:
 
 jobs:
   update-lambda-tests:
-    if: github.repository == 'aws/aws-cdk'
+    if: github.repository == 'aws/aws-cdk' && github.actor == 'aws-cdk-automation'
     runs-on: ubuntu-latest
     permissions:
       contents: write
 
@@ -148,6 +148,22 @@ const cluster = new eks.Cluster(this, 'EksAutoCluster', {
 
 For more information, see [Create a Node Pool for EKS Auto Mode](https://docs.aws.amazon.com/eks/latest/userguide/create-node-pool.html).
 
+### Disabling Default Node Pools
+
+You can disable the default node pools entirely by setting an empty array for `nodePools`. This is useful when you want to use Auto Mode features but manage your compute resources separately:
+
+```ts
+const cluster = new eks.Cluster(this, 'EksAutoCluster', {
+  version: eks.KubernetesVersion.V1_32,
+  defaultCapacityType: eks.DefaultCapacityType.AUTOMODE,
+  compute: {
+    nodePools: [], // Disable default node pools
+  },
+});
+```
+
+When node pools are disabled this way, no IAM role will be created for the node pools, preventing deployment failures that would otherwise occur when a role is created without any node pools.
+
 ### Node Groups as the default capacity type
 
 If you prefer to manage your own node groups instead of using Auto Mode, you can use the traditional node group approach by specifying `defaultCapacityType` as `NODEGROUP`:
 
@@ -1184,8 +1184,11 @@ export class Cluster extends ClusterBase {
         enabled: autoModeEnabled,
         // If the computeConfig enabled flag is set to false when creating a cluster with Auto Mode,
         // the request must not include values for the nodeRoleArn or nodePools fields.
+        // Also, if nodePools is empty, nodeRoleArn should not be included to prevent deployment failures
         nodePools: !autoModeEnabled ? undefined : props.compute?.nodePools ?? ['system', 'general-purpose'],
-        nodeRoleArn: !autoModeEnabled ? undefined : props.compute?.nodeRole?.roleArn ?? this.addNodePoolRole(`${id}nodePoolRole`).roleArn,
+        nodeRoleArn: !autoModeEnabled || (props.compute?.nodePools && props.compute.nodePools.length === 0) ?
+          undefined :
+          props.compute?.nodeRole?.roleArn ?? this.addNodePoolRole(`${id}nodePoolRole`).roleArn,
       },
       storageConfig: {
         blockStorage: {
 
@@ -235,6 +235,43 @@ describe('eks auto mode', () => {
         },
       });
     });
+
+    test('does not include nodeRoleArn when nodePools is empty', () => {
+      const { stack } = testFixtureNoVpc();
+
+      new eks.Cluster(stack, 'Cluster', {
+        version: CLUSTER_VERSION,
+        defaultCapacityType: eks.DefaultCapacityType.AUTOMODE,
+        compute: {
+          nodePools: [],
+        },
+      });
+
+      // Verify that nodeRoleArn is not included in the CloudFormation template
+      Template.fromStack(stack).hasResourceProperties('AWS::EKS::Cluster', {
+        ComputeConfig: {
+          Enabled: true,
+          NodePools: [],
+        },
+      });
+
+      // Verify that nodeRoleArn is not present in the ComputeConfig
+      const template = Template.fromStack(stack);
+      const cluster = template.findResources('AWS::EKS::Cluster');
+      const clusterLogicalId = Object.keys(cluster)[0];
+      const computeConfig = cluster[clusterLogicalId].Properties.ComputeConfig;
+
+      expect(computeConfig).not.toHaveProperty('NodeRoleArn');
+
+      // Verify that no IAM role resource is created for node pools
+      // The role would typically have a logical ID like 'ClusterClusternodePoolRole...'
+      const iamRoles = template.findResources('AWS::IAM::Role');
+      const nodePoolRoleKeys = Object.keys(iamRoles).filter(key =>
+        key.includes('nodePoolRole'),
+      );
+
+      expect(nodePoolRoleKeys.length).toBe(0);
+    });
   });
 
   describe('network configuration', () => {