Skip to content

_aws.mdx

Latest commit

 

History

History
75 lines (45 loc) · 4.1 KB

_aws.mdx

File metadata and controls

75 lines (45 loc) · 4.1 KB

First you need to configure your AWS account to allow Cloud 66 to access it:

  1. Log into the web interface for your AWS account
  2. Click on the name of your account in the top right corner of your AWS account, and select My Security Credentials.

On the next screen, some users will be asked to choose between Security Credentials and IAM users. We support both methods but we recommend that experienced users select IAM (Identity and Access Management) for better security because allows you to set permissions for specific users. Click on your chosen option below for more instructions.

After selecting the Security Credentials option:

  1. Select the Access Keys option from the menu.
  2. Click Create new access key
  3. Either download the key file or click Show access key and take note of your access key ID and secret access key. These are the credentials needed for Cloud 66 to access your account.

Step 1: Create a user

After selecting the IAM option follow this guide in AWS docs to set up a new IAM user for Cloud 66. We recommend naming the user cloud66 for clarity.

Be sure to copy or save the Access Key ID and Secret Access Key for this user - you will need these credentials to connect your Cloud 66 account.

Step 2: Set up access policies

You'll need to assign access policies for the cloud66 user so that it will have the access it requires to provision and manage your servers.

You can see them here: recommended minimum policies.

There are two method for assigning policies: using the AWS CLI or the web console:

If you have the AWS CLI tool installed, you can set up your access policies by running this command:

curl https://help.cloud66.com/c66_aws_iam_policy.json > c66_aws_iam_policy.json && aws iam put-user-policy --user-name cloud66 --policy-name ExamplePolicy --policy-document file://c66_aws_iam_policy.json

This downloads our JSON template to your machine and then submits it via the CLI. Note that this assumes you have named your user cloud66 as recommended. You can find more info in the AWS docs if you need it.

You can add policies via the IAM management console.

  1. Click on Access management → Users
  2. Click on your cloud66 user
  3. Click the Add inline policy button
  4. In another browser tab Open our JSON template and copy the whole page to your clipboard
  5. Back in the IAM console, click the JSON tab and paste in the template you just copied
  6. Click Review Policy
  7. Give your policy a name
  8. Click Create Policy

If you need more detail please read the AWS docs on this subject.

Cloud 66 supports both VPC and (for AWS accounts created before 2014) EC2-Classic. We also support reserved instances. To use a VPC, your account must conform with the default VPC guidelines.

Help with advanced AWS features: