AWS login and rosa login for automation

Question

Hello Team,
We would like to do automation to install some agents in aws rosa cluster for that we are trying to figure out how we can to do login automatically and run script. Our current setup is using mfa and generating session token and then using role switching to perform rosa work.
What is the best practice to use authorisation and authentication mechanism for doing automation.

Please help.

Accepted Answer

I would use Systems Manager to run ad hoc automation scripts on your EC2 instances in the cluster. If you're using an AMI listed [here](https://docs.aws.amazon.com/systems-manager/latest/userguide/prereqs-ssm-agent.html), the agent is already installed. Otherwise, you can [install it](https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-manual-agent-install.html) as part of the instance's [user data ](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/user-data.html) script, or if you're using CloudFormation to deploy, you can use [cfn-init ](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-init.html) to run scripts and install the SSM agent. You interact with Systems Manager using your IAM credentials, so you don't need to login directly to the instances (although you can using SSM Session Manager) to run automation.

AWS login and rosa login for automation

相关内容