Do all Get started steps: https://www.pulumi.com/docs/get-started/aws/begin/ (Install Pulumi, configure AWS credentials...)
A good practice is to create a new non-root AWS user for Pulumi deployment with restricted access.
List of permissions which are required for this PR are listed below:
AmazonRDSFullAccess
AmazonEC2FullAccess
IAMFullAccess
AmazonS3FullAccess
Run npm install to install Pulumi packages
Navigate to the pulumi/eip folder
Run pulumi stack init stack_name for example pulumi stack init dev
Configure stack config. Run: pulumi config set aws:region us-east-1
Finally, create an elastic IP address by running pulumi up command.
As the result, the output should be something like this:
where ip stands for the elastic IP address which is created for us.
Ping DNS admin and ask for test extnsn.com subdomain with A record set to the newly created elastic IP address.
Now, when we have our elastic IP address we can navigate to the pulumi/infrastructure folder
Init your stack (Same as step 5), run: pulumi stack init dev
Change RSA private key permission to 400 by running: chmod 400 rsa
Set all config variables listed in Pulumi.yaml under the config section by running:
pulumi config set CONFIG_NAME CONFIG_VALUE and for secrets run: pulumi config set CONFIG_NAME CONFIG_VALUE --secret. For example, let's add RSA private and public keys to the pulumi config.
Public key: cat rsa.pub | pulumi config set publicKey --
This PR
Steps to reproduce and test
Get started
steps: https://www.pulumi.com/docs/get-started/aws/begin/ (Install Pulumi, configure AWS credentials...) A good practice is to create a new non-root AWS user for Pulumi deployment with restricted access. List of permissions which are required for this PR are listed below:npm install
to install Pulumi packagespulumi/eip
folderpulumi stack init stack_name
for examplepulumi stack init dev
pulumi config set aws:region us-east-1
pulumi up
command. As the result, the output should be something like this: whereip
stands for the elastic IP address which is created for us.extnsn.com
subdomain withA record
set to the newly created elastic IP address.pulumi/infrastructure
folderpulumi stack init dev
ssh-keygen -t rsa -f rsa -m PEM
. Tutorial: https://github.com/pulumi/examples/tree/master/aws-ts-ec2-provisionerschmod 400 rsa
Pulumi.yaml
under the config section by running:pulumi config set CONFIG_NAME CONFIG_VALUE
and for secrets run:pulumi config set CONFIG_NAME CONFIG_VALUE --secret
. For example, let's add RSA private and public keys to the pulumi config.cat rsa.pub | pulumi config set publicKey --
cat rsa | pulumi config set privateKey --secret --
scripts/ivo.extnsn.com
to your domain namepulumi up
🚀ssh -i privateKey ubuntu@DOMAIN_NAME
❗❗ Feel free to ping me if you have any questions!