Vault integration with AWS Kubernetes Cluster permission denied error


i have enabled a kubernetes authentication for integration with our AWS EKS cluster.
i have one small question regarding the cluster endpoint api. does it need to be available in both public and private?

i am getting a permission denied error while login to vault using the new kubernetes authpath that we have created.