Skip to content

NewDevMachine

Dr. Rob Lambert, PhD edited this page Aug 10, 2016 · 16 revisions

These instructions are for persons creating new machines on aws fit for our use as development boxes. XXXXX is the username you want to use, and YYYYYY is the resulting instance id which is created. RANDOMZZZZ is a password you must choose based on a random generator.

Using the new_dev_machine.py script

The most recent way of doing this ...

  • Choose a long and complex password for the user
  • new_dev_machine.py XXXXX
  • Assign elastic IP
  • Add termination protection
  • Modify standard VPC script to allow this IP
  • Permit this IP through existing subnets/security groups
  • Manually allow this IP through firewalls
  • Pass the IP and username to the Developer, send the password if not already known in a separate email or over text.
  • fix the pulseaudio problem: pulse-audio

Centos6 (not using the script)

  • ./deploy_one_centos_instance.py XXXXX_dev_box c4.2xlarge
  • ./add_ebsvol_to_instance.py i-YYYYY
  • ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/home", "Size" : 100, "Attach" : "/dev/sdc" }'
  • ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/var/log", "Size" : 2, "Attach" : "/dev/sdd" }'
  • ./add_toolbox.py i-YYYYY $AWSSECCONF --iid --workstation
  • ./tag_cascade.py i-YYYYY '{"User" : "XXXXX"}'
  • ssh configure ports, stop/add to iptables
  • echo 0 >/selinux/enforce
  • service iptables stop
  • sed -i 's/SELINUX=enforcing/SELINUX=permissive/g' /etc/selinux/config
  • chkconfig iptables off
  • useradd XXXXX
  • passwd RANDOMZZZZ
  • visudo
  • Assign elastic IP
  • Add termination protection
  • Modify standard VPC script to allow this IP
  • Permit this IP through existing subnets/security groups
  • Manually allow this IP through firewalls
  • Pass the IP and username to the Developer, send the password if not already known in a separate email or over text.
  • fix the pulseaudio problem: pulse-audio

Centos7 (not using the script)

  • ./deploy_one_centos_instance.py XXXXX_dev_box c4.2xlarge
  • ./add_ebsvol_to_instance.py i-YYYYY
  • ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/home", "Size" : 100, "Attach" : "/dev/sdc" }'
  • ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/var/log", "Size" : 2, "Attach" : "/dev/sdd" }'
  • ./add_toolbox.py i-YYYYY $AWSSECCONF --iid --workstation
  • ./tag_cascade.py i-YYYYY '{"User" : "XXXXX"}'
  • setenforce permissive
  • sed -i 's/SELINUX=enforcing/SELINUX=permissive/g' /etc/selinux/config
  • ssh configure ports/gateways
  • useradd XXXXX
  • passwd RANDOMZZZZ
  • visudo
  • Assign elastic IP
  • Add termination protection
  • Modify standard VPC script to allow this IP
  • Permit this IP through existing subnets/security groups
  • Manually allow this IP through firewalls
  • Pass the IP and username to the Developer, send the password if not already known in a separate email or over text.
  • fix the pulseaudio problem: pulse-audio

Table of Contents

For users, installers, and other persons interested in the KAVE, or developing solutions on top of a KAVE.

Kave on Azure

For contributors

For someone who modifies the AmbariKave code itself and contributes to this project. Persons working on top of existing KAVEs or developing solutions on top of KAVE don't need to read any of this second part.

Clone this wiki locally