alphagov / cyber-security-windows-sandbox

Build a windows domain in AWS with terraform with a DC and WEC event forwarding.
MIT License
3 stars 0 forks source link

Import terraform from mordor repo as a starting point #1

Closed danjoneslf closed 3 years ago

danjoneslf commented 3 years ago

Although it's open source, we can't use the mordor repo directly as the AWS terraform implementation has been removed. I've dug out the terraform from the commit history. The terraform contains a DC and WEC The terraform also contains powershell scripts and remote-exec tasks to setup the DC and WEC This should give us a good spring board and all we need to do is install Splunk on the WEC

danjoneslf commented 3 years ago

I've stuck this in for an early review. It's been pland but not applyd so far. I've not changed the domain name since it's hard-coded in some of the powershell. I'll look into making that configurable.

danjoneslf commented 3 years ago

Remote execs are not yet working to provision the servers are not yet working.

danjoneslf commented 3 years ago

Made some progress on this today. I now have WinRM and RDP working and the remote-execs running but am still working on getting git installed and on the system $PATH which is proving weirdly difficult because apparently powershell's trying to call the github api with TLS1.0.