AWS IAM Roles How To. Qubole AWS Account ID. External ID. Qubole Inc. AWS IAM Roles How To qubole.com/education

Similar documents
McAfee Cloud Workload Security Suite Amazon Machine Image Installation Guide

Cloud Daddy Easy Instance Firewall 1.0

Quick start guide for Infscape UrBackup Appliance on Amazon Web Services

lab Creating a Low Cost Sync Database for JavaScript Applications with AWS V1.00 AWS Certified Developer Associate lab title Course title

OnCommand Cloud Manager 3.2 Getting Up and Running

Installation Guide Revision B. McAfee Cloud Workload Security 5.0.0

1. Define a user a. To create a user, refer to the instructions outlines on the AWS page at:

AWS Glue. Developer Guide

AWS Glue. Developer Guide

AWS Serverless Application Repository. Developer Guide

IAM Recommended Practices

AWS Glue. Developer Guide

AWS Glue. Developer Guide

AWS Elemental MediaLive. User Guide

McAfee Cloud Workload Security Installation Guide. (McAfee epolicy Orchestrator)

CircleCI Server v2.16 Installation Guide. Final Documentation

Amazon Web Services Hands On S3 January, 2012

Red Hat CloudForms 4.6

Amazon WorkDocs. Administration Guide

Configuring AWS IAM Authentication for Informatica Cloud Amazon Redshift Connector

CloudView User Guide. June 8, 2018

CloudHealth. AWS and Azure On-Boarding

Monitoring AWS VPCs with Flow Logs

FreeNAS backup to S3 and ZFS replication. Lee Marzke

AWS CloudHSM. User Guide

Qualys CloudView v1.x

DataMan. version 6.5.4

AWS CloudHSM. User Guide

AWS Data Pipeline. Developer Guide API Version

SQLSplitter v Date:

Getting Started with Attunity Replicate on Amazon EC2. Version 6.0

Cloud Cluster Management: A vfxt.py Usage Guide

Tutorial: Uploading your server build

Informatica Cloud Spring Amazon S3 Connector Guide

AWS Integration Guide. Full documentation available at

Moab/NODUS Cloud Bursting for Moab Workload Manager

CLOUD AND AWS TECHNICAL ESSENTIALS PLUS

Monitoring Serverless Architectures in AWS

Getting Started with Cloudamize Manage

Sputnik Installation and Configuration Guide

EC2 and VPC Deployment Guide

Elastic Cloud Storage (ECS)

Software as a Service (SaaS) Quick Start

Immersion Day. Getting Started with Amazon S3. January Rev

SIOS DataKeeper Cluster Edition on the AWS Cloud

Network Security & Access Control in AWS

SelectSurvey.NET AWS (Amazon Web Service) Integration

Server & Application Monitor

Amazon WorkDocs. Developer Guide

Amazon Web Services Monitoring Integration User Guide

Immersion Day. Getting Started with Linux on Amazon EC2

Server & Application Monitor

Object Storage Service. Third-Party Client (S3cmd) User Guide. Issue 03 Date

AWS Quick Start Guide: Back Up Your Files to Amazon Simple Storage Service. Quick Start Version Latest

AWS Elemental MediaStore. User Guide

AWS Iden)ty And Access Management (IAM) Manohar Rapolu

Amazon WorkSpaces. Administration Guide Version 1.0

StorageGRID Webscale 10.3 Administrator Guide

Optiwave AWS User Guide

Immersion Day. Getting Started with Linux on Amazon EC2

Tutorial: Initializing and administering a Cloud Canvas project

Amazon Web Services. Block 402, 4 th Floor, Saptagiri Towers, Above Pantaloons, Begumpet Main Road, Hyderabad Telangana India

AWS Snowball: User Guide

Server & Application Monitor

AWS Remote Access VPC Bundle

Dealing with Event Viewer

Using Arcserve Backup-R17 product with Amazon Web Services(AWS) Storage Gateway-VTL

HashiCorp Vault on the AWS Cloud

AWS Quick Start Guide. Launch a Linux Virtual Machine Version

Using VMware Cost Insight. VMware Cost Insight services

Immersion Day. Getting Started with Amazon RDS. Rev

AnyNet Secure Cellular Connectivity Signup process

Tutorial 1. Account Registration

Exam Questions AWS-Certified- Developer-Associate

Deploying an Active Directory Forest

LINUX, WINDOWS(MCSE),

Course Outline. Module 1: Microsoft Azure for AWS Experts Course Overview

AWS Service Catalog. User Guide

Amazon Elastic Compute Cloud

EDB Ark Administrative User s Guide. Version 2.1

QUICK START: SYMANTEC ENDPOINT PROTECTION FOR AMAZON EC2

AWS Landing Zone. AWS Developers Guide. June 2018

Confluence Data Center on the AWS Cloud

AWS Snowball: User Guide

AWS ELEMENTAL LIVE TO AWS ELEMENTAL MEDIALIVE TO AWS ELEMENTAL MEDIAPACKAGE

Deploying standalone Avaya WebLM on Cloud Services

Immersion Day. Getting Started with Windows Server on. Amazon EC2. Rev

At Course Completion Prepares you as per certification requirements for AWS Developer Associate.

Documentation. This PDF was generated for your convenience. For the latest documentation, always see

From there, navigate to the Policies option and select the Create Policy button at the top:

Detecting Credential Compromise in AWS

Provisioning Lumeta ESI via AWS

Amazon AWS-Solutions-Architect-Professional Exam

Advanced Usage of the AWS CLI. Brian Wagner, Solutions Architect

Amazon Virtual Private Cloud. VPC Peering

Remote Desktop Gateway on the AWS Cloud

Configuring AWS for Zerto Virtual Replication

Configuring the NetBackup Cloud Connector for use with StorReduce (v1.2)

Informatica PowerExchange for Amazon S User Guide

Amazon Simple Notification Service. Getting Started Guide API Version

Transcription:

The following guide will walk through configuring Identity and Access Management Roles inside of Amazon Web Services and connecting to Qubole. This document contains code which is intended for use inside of our customer environments. There are portions of the code which need to be updated in order for the AWS IAM Roles to properly function. Customer required updates are designated with bold text. Please make sure to update the relevant sections of the code connecting AWS and Qubole. AWS Account Prior to connecting to Qubole make sure you have created an account with AWS, have entered the relevant billing details and have access to console.aws.amazon.com. Qubole Account 1. Log into Qubole through api.qubole.com 2. Navigate to the Control Panel interface. 3. Navigate to the Account interface within the Control Panel. 4. In the Account Settings pane, find the Access Mode option. 5. Change the selection from IAM Keys to IAM Roles. 6. Record the following information for use later. Qubole AWS Account ID External ID

AWS Policy EC2 1. Log into AWS Console through console.aws.amazon.com. 2. Navigate to the Identity and Access Management interface. 3. Navigate to the Policies interface within the Identity and Access Management interface. 4. Select Create Policy. 5. Select Create Your Own Policy. 6. Enter a Policy Name for the EC2 policy. 7. Provide a Policy Description. 8. Use the below code for the Policy Document and update the text as necessary. 9. Select Create Policy. "Action": [ "ec2:authorizesecuritygroupegress", "ec2:authorizesecuritygroupingress", "ec2:cancelspotinstancerequests", "ec2:createsecuritygroup", "ec2:createtags", "ec2:deletesecuritygroup", "ec2:deletetags", "ec2:describe*", "ec2:importkeypair", "ec2:modifyinstanceattribute", "ec2:requestspotinstances", "ec2:runinstances", "ec2:startinstances", "ec2:stopinstances", "ec2:terminateinstances", "Resource": [ "*" NOTE: the asterik (*) in the first line under Resource indicates all EC2 resources.

AWS Policy S3 2. Navigate to the Policies interface within the Identity and Access Management interface. 3. Select Create Policy. 4. Select Create Your Own Policy. 5. Enter a Policy Name for the S3 policy. 6. Provide a Policy Description. 7. Use the below code for the Policy Document and update the text as necessary. 8. Select Create Policy. "Action": [ "s3:deleteobject", "s3:getobject", "s3:getobjectacl", "s3:putobject", "s3:putobjectacl", "s3:getbucketacl", "s3:listbucket", "Resource": [ "arn:aws:s3::: bucket path /*", "arn:aws:s3::: bucket path " NOTE: the asterik (*) after the slash (/) in the first line under Resource indicates all sub directories stored in the location provided to the left of the slash (/).

AWS Role 2. Navigate to the Roles interface within the Identity and Access Management interface. 3. Select Create New Role. 4. Enter a Role Name and select Next Step. 5. Under Select Role Type make sure to select AWS Service Roles. 6. Under AWS Service Roles select Amazon EC2. 7. Select the EC2 and S3 policies created in the previous steps. 8. Select Next Step. 9. Record the Role ARN below and then select Create Role. Role ARN

Trust Relationships 2. Navigate to the Roles interface within the Identity and Access Management interface. 3. Select the AWS Role previously created. 4. Select the Trust Relationships tab. 5. Select Edit Trust Relationships. 6. Use the below code for the Policy Document and update the text as necessary. 7. Select Update Trust Policy. "Principal": "Service": "ec2.amazonaws.com", "Action": "sts:assumerole", "Principal": "AWS": "arn:aws:iam:: qubole aws account id :root", "Action": "sts:assumerole", "Condition": "StringEquals": "sts:externalid": " external id " Qubole Access Mode 1. Return to Qubole. 2. In the Account Settings pane, under the Access Mode enter the Role ARN. 3. Provide a Default Location. 4. Select Save.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback