Difference between revisions of "Terraform module: rds bastion"
Jump to navigation
Jump to search
| (8 intermediate revisions by the same user not shown) | |||
| Line 2: | Line 2: | ||
| − | To access/create user: SSH users are managed by their public key, simply drop the SSH key of the user in the /public-keys path of the bucket. Keys should be named like '[[username.pub]]', this will create the user 'username' on the bastion server. Username must contain alphanumeric characters only. | + | To access/create user: SSH users are managed by their public key, simply drop the SSH key of the user in the <code>/public-keys/</code> path of the bucket. Keys should be named like '[[username.pub]]', this will create the user 'username' on the bastion server. Username must contain alphanumeric characters only. |
module "rds_bastion" { | module "rds_bastion" { | ||
| Line 10: | Line 10: | ||
.../... | .../... | ||
} | } | ||
| + | |||
| + | == Features == | ||
| + | * All SSH commands are logged on an [[S3 bucket]] for security compliance, in the <code>[[/logs]]</code> path | ||
| Line 15: | Line 18: | ||
* [[Bastion host]] | * [[Bastion host]] | ||
* <code>[[aws s3 ls]]</code> | * <code>[[aws s3 ls]]</code> | ||
| + | * <code>[[aws s3 cp]] [[~/.ssh/rsa_key.pub]] s3://your-bastion-bucket-name/public-keys/</code> | ||
| + | * <code>[[aws s3 ls]] s3://your-bastion-bucket-name/public-keys/</code> | ||
| + | * <code>[[ls -la ~/.ssh/]]</code> | ||
== See also == | == See also == | ||
Latest revision as of 20:15, 29 September 2022
To access/create user: SSH users are managed by their public key, simply drop the SSH key of the user in the /public-keys/ path of the bucket. Keys should be named like 'username.pub', this will create the user 'username' on the bastion server. Username must contain alphanumeric characters only.
module "rds_bastion" {
source = "Guimove/bastion/aws"
version = "2.3.0"
bucket_name = "my_famous_bucket_name"
.../...
}
Features[edit]
Related[edit]
- Bastion host
aws s3 lsaws s3 cp ~/.ssh/rsa_key.pub s3://your-bastion-bucket-name/public-keys/aws s3 ls s3://your-bastion-bucket-name/public-keys/ls -la ~/.ssh/
See also[edit]
- Amazon databases: AWS RDS, storage,
aws rds, Amazon RDS Proxy, RDS FAQs, PostgreSQL, MySQL, SQL Server, AWS Outposts, Amazon Aurora, Amazon Aurora Serverless , Amazon DocumentDB, Amazon DynamoDB, Amazon Redshift, Amazon QLDB, Amazon RDS Performance Insights, DataFileRead, DMS, Amazon Neptune, Amazon MemoryDB for Redis, Amazon RDS query editor for Aurora Serverless, Amazon Redshift query editor, AWS RDS Snapshots, AWS RDS Instance Types,rds_superuser, Authentication, autoscaling
Advertising:
