abiydv / abiydv.github.io

Source code for https://abiydv.github.io

https://abiydv.github.io

1 stars 0 forks source link

Terraform, multi-account and multi-region workloads | @abiydv #8

Open utterances-bot opened 2 years ago

utterances-bot commented 2 years ago

Terraform, multi-account and multi-region workloads | @abiydv

Managing multi-account, multi-region workloads using Terraform

https://abiydv.github.io/posts/terraform-multiaccount-multiregion/

YUVA69 commented 2 years ago

Thanks Abhinav, very simple and nice article, and much helpful reference. I am working on CICD using Terraform from Central Tooling Account to UAT and PROD, for glue jobs. How can I do this for Glue jobs? Do you have any reference article. Thanks.

YUVA69 commented 2 years ago

Also, can you please explain or add a sample for arn:aws:iam::123456789012:role/TFRole as am not clear what this IAM role should have. Thanks

abiydv commented 2 years ago

@YUVA69 - Thanks for your comments! The permissions for arn:aws:iam::123456789012:role/TFRole would depend on what you want it to do. For ex, if you are creating instances this way, it should have permissions to work with EC2 instances. The other important thing for this role is the trust policy. It needs to trust the "operator" account role terraform initializes with. You can read more about the trust policies here.