-
Notifications
You must be signed in to change notification settings - Fork 16
WIP setting up an AWS service account
Fernando Barreiro edited this page Oct 22, 2020
·
1 revision
TODO: Create a service account and document it https://eksctl.io/usage/iam-permissions-boundary/
Before you begin we need to create a service account with some more restricted access in the IAM Category.
- First create a new policy under "Policies". We have a eks administrator
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "eksadministrator",
"Effect": "Allow",
"Action": "eks:*",
"Resource": "*"
}
]
}
in the AWS web interface under the IAM > Users category.
- Select the desired name, e.g. harvester
- Tick the box "Access Type": "Programmatic access"
- Att
| Getting started |
|---|
| Installation and configuration |
| Testing and running |
| Debugging |
| Work with Middleware |
| Admin FAQ |
| Development guides |
|---|
| Development workflow |
| Tagging |
| Production & commissioning |
|---|
| Scale up submission |
| Condor experiences |
| Commissioning on the grid |
| Production servers |
| Service monitoring |
| Auto Queue Configuration with CRIC |
| SSH+RPC middleware setup |
| Kubernetes section |
|---|
| Kubernetes setup |
| X509 credentials |
| AWS setup |
| GKE setup |
| CERN setup |
| CVMFS installation |
| Generic service accounts |
| Advanced payloads |
|---|
| Horovod integration |