Pushing registry keys across accounts daily

Hello everyone,

I am trying to push a set of reg keys to non prod and prod accounts. we spin up new machines daily and i'd like to make sure the keys are pushed. What would be the best way to do this?

Topics

Management & Governance Compute

Tags

AWS Systems Manager Windows Provisioning AWS Account Management

Language

English

joeyfine

asked 2 years ago171 views

1 Answer

Newest
Most votes
Most comments

Hi THere

Here is a guide that shows you how to push registry keys to windows instances using Systems Manager Run Command

https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/automate-adding-or-updating-windows-registry-entries-using-aws-systems-manager.html

Another easy way is to use EC2 Instance UserData to run a command at at launch. You can run the "reg add" command to add the key when the instance is launched. See

https://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/ec2-windows-user-data.html

https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/reg-add

EXPERT

Matt-B

answered 2 years ago

joeyfine
2 years ago
So i was hoping for something to run daily in system manager like my maintenance windows for patching (say like a lambda that kicks off a job to push the keys every 4 hours). I dont want to push the both non pro and prod keys to a new instance when they are spun up in Kubernetes.
joeyfine
2 years ago
I already do a manual push of the keys via run command. I was hoping to automate it out completely to run every so many hours.
Matt-B EXPERT
2 years ago
Hi Yes you can do this with EventBridge. See https://docs.aws.amazon.com/systems-manager/latest/userguide/monitoring-systems-manager-targets.html

You can use EventBridge to kick off a Run Command on a schedule, or you can use an event like When a new node is created in an Auto Scaling group, a Run Command target action could turn on the web server role or install software on the node.

Relevant content

How do we make different stages like dev, pre-prod and prod in amplify ?
Accepted Answer
Navin GV
asked 2 years ago
Finding AWS keys across regions and accounts at the org level.
rePost-User-0163415
asked a year ago
How to configure multiple route53 configuration for prod and non-prod in cdk.context.json
Rohit Sharma
asked 3 months ago
How feasible is to terminate the non-prod environments to save cost
rePost-User-0903583
asked 10 months ago
How can I push CloudWatch logs across accounts to Kinesis Data Firehose?
AWS OFFICIALUpdated a year ago
How do I share my AWS KMS keys across multiple AWS accounts?
AWS OFFICIALUpdated a year ago
How do I resolve the error "The new key policy will not allow you to update the key policy in the future" when I try to create an AWS KMS key using AWS CloudFormation?
AWS OFFICIALUpdated a year ago
How can I allow a secondary account to push or pull images in my Amazon ECR image repository?
AWS OFFICIALUpdated 2 years ago
Announcing support for multiple host keys and key types for AWS Transfer Family servers
EXPERT
sagarb-aws
published 2 years ago
AWS Account Activation - Locating AWS Account ID and Troubleshooting Phone Verification Issues
EXPERT
dnyanesh-db
published 5 months ago