-
Notifications
You must be signed in to change notification settings - Fork 5
NewDevMachine
Dr. Rob Lambert, PhD edited this page Aug 10, 2016
·
16 revisions
These instructions are for persons creating new machines on aws fit for our use as development boxes. XXXXX is the username you want to use, and YYYYYY is the resulting instance id which is created. RANDOMZZZZ is a password you must choose based on a random generator.
The most recent way of doing this ...
- Choose a long and complex password for the user
- new_dev_machine.py XXXXX
- Assign elastic IP
- Add termination protection
- Modify standard VPC script to allow this IP
- Permit this IP through existing subnets/security groups
- Manually allow this IP through firewalls
- Pass the IP and username to the Developer, send the password if not already known in a separate email or over text.
- fix the pulseaudio problem: pulse-audio
- ./deploy_one_centos_instance.py XXXXX_dev_box c4.2xlarge
- ./add_ebsvol_to_instance.py i-YYYYY
- ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/home", "Size" : 100, "Attach" : "/dev/sdc" }'
- ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/var/log", "Size" : 2, "Attach" : "/dev/sdd" }'
- ./add_toolbox.py i-YYYYY $AWSSECCONF --iid --workstation
- ./tag_cascade.py i-YYYYY '{"User" : "XXXXX"}'
- ssh configure ports, stop/add to iptables
- echo 0 >/selinux/enforce
- service iptables stop
- sed -i 's/SELINUX=enforcing/SELINUX=permissive/g' /etc/selinux/config
- chkconfig iptables off
- useradd XXXXX
- passwd RANDOMZZZZ
- visudo
- Assign elastic IP
- Add termination protection
- Modify standard VPC script to allow this IP
- Permit this IP through existing subnets/security groups
- Manually allow this IP through firewalls
- Pass the IP and username to the Developer, send the password if not already known in a separate email or over text.
- fix the pulseaudio problem: pulse-audio
- ./deploy_one_centos_instance.py XXXXX_dev_box c4.2xlarge
- ./add_ebsvol_to_instance.py i-YYYYY
- ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/home", "Size" : 100, "Attach" : "/dev/sdc" }'
- ./add_ebsvol_to_instance.py i-YYYYY '{"Mount": "/var/log", "Size" : 2, "Attach" : "/dev/sdd" }'
- ./add_toolbox.py i-YYYYY $AWSSECCONF --iid --workstation
- ./tag_cascade.py i-YYYYY '{"User" : "XXXXX"}'
- setenforce permissive
- sed -i 's/SELINUX=enforcing/SELINUX=permissive/g' /etc/selinux/config
- ssh configure ports/gateways
- useradd XXXXX
- passwd RANDOMZZZZ
- visudo
- Assign elastic IP
- Add termination protection
- Modify standard VPC script to allow this IP
- Permit this IP through existing subnets/security groups
- Manually allow this IP through firewalls
- Pass the IP and username to the Developer, send the password if not already known in a separate email or over text.
- fix the pulseaudio problem: pulse-audio
For users, installers, and other persons interested in the KAVE, or developing solutions on top of a KAVE.
-
Developer Home
-
Onboarding
-
Architecture
-
Identities
-
Repository
-
FreeIPA
-
Installation
-
AWS Dev, getting started with aws within our dev team.
-
AWS CLI, more details and discussion over using aws for this development
-
DockerDev, Installation and usage of Docker
-
Onboarding
For someone who modifies the AmbariKave code itself and contributes to this project. Persons working on top of existing KAVEs or developing solutions on top of KAVE don't need to read any of this second part.