1. after creation of cluster go to eks cluster page us and copy oidc url
2. now go to iam and search identity provider and add oidc connect there paste the oidc url there
3. follow below screenshot and click on thumbprint
4. 

now create a alb policy and follow below document https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.6.1/docs/install/iam_policy.json

now go to iam role and create a role using webidentiy and use above oidc url and sts.amazonaws.com and instead of aud use sub attach this alb-iam policy

now edit the role trust relation ship and add this line in last of policy add there service account name and namespace of service account details

use sub and sts.amazonaws.com now go to official document of alb ingress and edit ingress controller deployment file edit service account add this role arn in alb-ingress controller file and edit cluster name and deploy it. before install certmanage in it

follow kubernetes dashboard install steps below https://medium.com/@satyakommula/deploy-kubernetes-dashboard-with-nodeport-382f447d2ff8