AWS SSO with Azure Active Directory

Tutorial from Azure provided here : https://docs.microsoft.com/en-us/azure/active-directory/active-directory-saas-amazon-web-service-tutorial To configure the integration of Amazon Web Services (AWS) into Azure AD, you need to add Amazon Web Services (AWS) from the gallery to your list of managed SaaS apps. To add Amazon Web Services (AWS) from the gallery, perform the following steps: In the Azure Portal, on the left … Continue reading AWS SSO with Azure Active Directory

Advertisements

AWS – AutoScaling Health Check Timers

Autoscaling without health check of instances is not possible. After all it is how autoscaling maintains the minimum and maximum instances running in healthy state. It is also not possible to suspend the health check temporarily. Autoscaling health check type can be EC2 or ELB. There is an instance in healthy state and running but … Continue reading AWS – AutoScaling Health Check Timers

AWS Cloud Formation Cross Stack

As mentioned in AWS blog https://aws.amazon.com/blogs/aws/aws-cloudformation-update-yaml-cross-stack-references-simplified-substitution/ Many AWS customers use one “system” CloudFormation stack to set up their environment (VPCs, VPC subnets, security groups, IP addresses, and so forth) and several other “application” stacks to populate it (EC2 & RDS instances, message queues, and the like). Until now there was no easy way for the application … Continue reading AWS Cloud Formation Cross Stack

AWS – Attach/Replace IAM role of running instance

https://aws.amazon.com/blogs/security/easily-replace-or-attach-an-iam-role-to-an-existing-ec2-instance-by-using-the-ec2-console/ https://aws.amazon.com/blogs/security/new-attach-an-aws-iam-role-to-an-existing-amazon-ec2-instance-by-using-the-aws-cli/ From the above articles from AWS we can now attach/replace IAM role of running instances. The below example is simple scenario to test the same using CF.. Provision EC2 Instance, Create S3 bucket, Create S3 Bucket Policy, Role and Instance Profile. But I am not attaching the instance profile to the EC2 Instance … Continue reading AWS – Attach/Replace IAM role of running instance

Jenkins – AWS – Ansible – Rolling Update of AMI – Part 2

As we have configured Job1 - AMI lets move to Job2 - UpdateCF. The temporary file with the AMI Id should be injected in to Job2 so that it can update cloud formation stack with the new image. Now as we are going to use ansible I've placed the code in GitHub Repo. Now in … Continue reading Jenkins – AWS – Ansible – Rolling Update of AMI – Part 2

Jenkins – AWS – Ansible – Rolling Update of AMI – Part 1

Create/Update AMI of Instances through CF - https://linuxandevops.wordpress.com/2017/06/24/aws-update-ami-through-cf-template/ But this is manual as I need to take a snapshot of EC2 Instance and update CF stack with new AMI. It is time to automate the rolling update of AMI using Jenkins and Ansible. Jenkins install and configuration documented here - https://linuxandevops.wordpress.com/2017/07/10/jenkins-install-and-plugins/ Created two jobs - … Continue reading Jenkins – AWS – Ansible – Rolling Update of AMI – Part 1

AWS – Stop Start Instances with Lambda function based on Cloudwatch

This is my customized solution to stop and start AWS EC2 instances. There is solution from Amazon - AWS EC2 Scheduler: https://s3.amazonaws.com/solutions-reference/ec2-scheduler/latest/ec2-scheduler.pdf Example picked from: https://github.com/sangitaccount/AWS/blob/master/cfn-templates/AWS_EC2_ShutStart.template As mentioned in AWS document - https://aws.amazon.com/premiumsupport/knowledge-center/start-stop-lambda-cloudwatch/  I wanted to stop my development instances during night ( 11 PM )and start them in the morning ( 10 AM ). ISSUE 1: In the … Continue reading AWS – Stop Start Instances with Lambda function based on Cloudwatch