Sometimes we are hitting cases where someone running the terraform gets "Unauthorized", which is due to how AWS gives special access to the person who creates an EKS cluster.
We should be able to work around this by creating the cluster with an assumed role instead of a user token, then always use that role for operations on the cluster.