Configure AWS Automation with Rundeck
128 views
Skip to first unread message
Dhamodharan Deivasigamani
May 23, 2024, 3:26:17 PM5/23/24
to rundeck-discuss
Hello Team,
I am new to Rundeck, just started working to clear some resources from AWS using Rundeck. I am trying to add the IAM authentication to Rundeck, but i didnt get option to add my role.
When i check in key storage, its asking to update as passowrd.
Can someone share me the documetion to configure AWS authentication and job configuration for the automation.
When i check in key storage, its asking to update as passowrd.
Can someone share me the documetion to configure AWS authentication and job configuration for the automation.
Thanks,
Dhamodharan
rac...@rundeck.com
May 23, 2024, 4:27:56 PM5/23/24
to rundeck-discuss
Hi Dhamodharan,
Are you looking for a way to authenticate using the AWS IAM credentials? Rundeck OSS only supports these authentication methods.
Process Automation (formerly "Rundeck Enterprise") also supports SSO, take a look at this.
About the automation, you can use this plugin in Rundeck OSS (also this one if you want to manage s3 buckets). Process Automation formerly "Rundeck Enterprise") includes a complete AWS plugin suite, take a look.
Of course, you can automate using a script step (eg: calling the `aws` tool).
Greetings!
Dhamodharan Deivasigamani
May 27, 2024, 9:58:32 AM5/27/24
to rundeck-discuss
Thanks for the reply...
I have seen the articles already, I am facing still difficulty to setup my job. Let me share my requirement based on that, if someone share me the flow it would be really help me.
My requirement is.
1. I have my script placed in bitbucket repo -
AWS cli commands added in that script with variablised resource name.
No hardcode values in the script, as i will use the script for different account.
So i will pass the resource name via runtime variable while executing the job.
2.Rundeck job configuration
Configured the options to read the aws iam role for the specifiged aws account
Refer attached image: Options-config-for AWS role
3.Workflow configuration
1.script - to pull the code from the repo
Refer image: pull-code from repo
2.call the script from the folder and exec with the runtime paramter.
Refer image: step-exec script
I have seen the articles already, I am facing still difficulty to setup my job. Let me share my requirement based on that, if someone share me the flow it would be really help me.
My requirement is.
1. I have my script placed in bitbucket repo -
AWS cli commands added in that script with variablised resource name.
No hardcode values in the script, as i will use the script for different account.
So i will pass the resource name via runtime variable while executing the job.
2.Rundeck job configuration
Configured the options to read the aws iam role for the specifiged aws account
Refer attached image: Options-config-for AWS role
3.Workflow configuration
1.script - to pull the code from the repo
Refer image: pull-code from repo
2.call the script from the folder and exec with the runtime paramter.
Refer image: step-exec script
Kindly someone help me, The above approach is not working. Is the configuration is in right place? Or should I follow a different approach?
Note: the rundeck server running in AWS account A. But the script needs to exec in AccountB.
Should I want to create the trust relationship between account? Or is it enough to use the role from the Account B.
Should I want to create the trust relationship between account? Or is it enough to use the role from the Account B.
Thanks,
Dhamodharan.
rac...@rundeck.com
May 27, 2024, 1:17:58 PM5/27/24
to rundeck-discuss
Hi Dhamodharan,
You can pull the script, put it in a specific URL / filesystem, and then call it using the script step ("Script file or URL" step), passing an option in the "Arguments" field (literally or from an option like `${option.myoption}`). It seems your approach but coded in an inline-script.
Looking at your option config, it seems that you're using a remote option that's valid if you want to use some secure options against a node definition. If you want to use options against a script as an argument, use the "Secure Option", you can learn more here.
Of course, you will test your script first to make sure that it works from the rundeck server. More information about what is failing in your workflow/instance would be great to help you.
Regards.
You can pull the script, put it in a specific URL / filesystem, and then call it using the script step ("Script file or URL" step), passing an option in the "Arguments" field (literally or from an option like `${option.myoption}`). It seems your approach but coded in an inline-script.
Looking at your option config, it seems that you're using a remote option that's valid if you want to use some secure options against a node definition. If you want to use options against a script as an argument, use the "Secure Option", you can learn more here.
Of course, you will test your script first to make sure that it works from the rundeck server. More information about what is failing in your workflow/instance would be great to help you.
Regards.
Dhamodharan Deivasigamani
May 28, 2024, 8:19:18 AM5/28/24
to rundeck-discuss
Thanks for the reply..
I have couple of other jobs configured in our rundeck projects, they have used an another approach where they used bitbucket arguments to download the script from the repo and executed as part of the steps.
So both making me confuse still more.
Also I am still facing challenges to authenticate other AWS account to execute the commands.
Only the same AWS account execution is working, where the rundeck server is configured. I am trying to connect to other aws account and execute the commnds there. Its not working for me.
Is it possible to give an On-call support for few mins??
As I am the only person working on this and getting blocked with the configuration. Couldnt proceed from the first step. I am going through the Rundeck's documentation and the youtube videos aswell but still i am facing some difficulties.
So both making me confuse still more.
Also I am still facing challenges to authenticate other AWS account to execute the commands.
Only the same AWS account execution is working, where the rundeck server is configured. I am trying to connect to other aws account and execute the commnds there. Its not working for me.
Is it possible to give an On-call support for few mins??
As I am the only person working on this and getting blocked with the configuration. Couldnt proceed from the first step. I am going through the Rundeck's documentation and the youtube videos aswell but still i am facing some difficulties.
Kindly help me to get started with the initial configuration, Later I can manage for further configurations.
Thanks in advance.
Dhamodharan.
Dhamodharan Deivasigamani
May 29, 2024, 1:19:21 PM5/29/24
to rundeck-discuss
Team,
Can someone from support team can help me here?
Can someone from support team can help me here?
rac...@rundeck.com
May 29, 2024, 1:30:50 PM5/29/24
to rundeck-discuss
Hi Dhamodharan,
This approach should work in your environment (using different profiles in your AWS-based scripts).
If you're using the Process Automation product (formerly "Rundeck Enterprise"), please get in touch with the dedicated support team. They will help you as soon as possible.
Regards.
Reply all
Reply to author
Forward
0 new messages