Cloud Computing Made Easy®
Amazon AWS Setup
From Cloud Computing Wiki - Kaavo
To securely manage your applications on the cloud infrastructure provided by Amazon using IMOD, you need to perform the following 4 tasks:
AWS Account Setup
After logging in IMOD you need to go to the Kaavo's IMOD's account profile page, account setup -> aws account -> setting and fill the required information. You need to have Amazon AWS/EC2 account for filling out this information. Following are the steps to get the required information:
- Sign Up or login to your AWS account http://aws.amazon.com
- Go to your account -> access identifiers
- Account number will be on the top right, enter it without the dashes.
- Scroll down the page and get access key and secret access key. To get the secret access key click on the "+ Show"
- For account name you can use any convenient name e.g. "Production", "QA, "Test", "Dev", etc.
Figure 1: Settings under Profile page
Note: When copy pasting the account information please make sure that no additional space character is added in the end. Also when entering AWS account number in IMOD remove the dash characters "-". IMOD performs validation to make sure your AWS account is active to use the required services. You need to provide your credit card information to activate the AWS account before you can launch the servers.
Create SSH Keys
After entering your valid AWS account information click the green arrow in the Keypair column to go to the key management page for the account.
Figure 2: Key Pair management (certificate for ssh)
Enter any unique name for the key and click on create key. After the key is created you will get a prompt for downloading the key. Save the key in a safe place for your records.
Note: Before clicking on Create button for the key please make sure that the “Save the key in server” is checked. This will ensure that the key (Certificate) is saved in the IMOD database and the Kaavo’s n-tier engine can communicate with your servers using the SSH key. If the key (Certificate) is not saved in IMOD, you can import and save it in the database by selecting the radio button for the key name and then selecting the corresponding key file (.pem file) from the local drive and clicking on update button.
Figure 3: Uploading Key from the local drive
Configure Firewall Rules
Go to the Dashboard page by clicking on the Dashboard image in the header. On the Dashboard page select Security Groups tab. To create a firewall group click on the Add button under Groups and assign name and description for the rule.
Figure 4: Adding Firewall Group
To configure the ports for the rule select the rule and then click on Add and configure the protocols, IP addresses and ports. You may enter as many rules for the ports as you need for each group.
Figure 5: Configuring ports for the firewall group
Note: Make sure appropriate firewall ports are open. E.g. Port 80 is used for http, 443 for https, and port 22 is used for SSH. During system deployment IMOD engine update the firewall rules to make sure that IMOD engine can communicate with your servers for management. If want to limit the IP addresses from which specific ports can be accessed please make sure to open the port only for the specified IP address by replacing 0.0.0.0 with the specified IP address. Entering 0.0.0.0 opens the port for all IP addresses. If you are connecting from behind a proxy server to the internet you can find your IP address by visiting http://www.whatismyip.com site from your browser.
![[Wiki Home]](/skins/common/images/wiki.png)