kunduso / ec2-userdata-terraform Goto Github PK

This GitHub repository contains multiple use cases of working with Terraform to provision Amazon EC2 instances. Specific Git branches separate these use cases. To read more about that, click here.

Securely accessing and managing your Amazon EC2 instances for Windows has become a critical task for cloud engineers and IT administrators. In this blog post, I explored how you can leverage AWS Systems Manager's Fleet Manager to remotely connect to your EC2 instances using the familiar Remote Desktop Protocol (RDP), without the need for complex network configurations or exposing your instances to the public internet.

This repository contains the Terraform code to provision an Amazon EC2 instance for Windows with secure RDP access using AWS Systems Manager's Fleet Manager. The code demonstrates how to set up the necessary AWS services, including VPC Endpoints, security groups, and IAM policies, to enable this secure remote access solution.

I installed terraform before I worked on this repository. Installation information is available in the install guide.
I used the access_key and the secret_key of an IAM user that had permission to create all the resources managed via this terraform code.
I created a terraform.tfvars file to store them.

Ensure that the IAM user whose credentials are being used in this configuration has permission to create and manage all the resources that are included in this repository.
Review the code, especially the iamrole.tf and ec2.tf file to understand all the concepts associated with creating an IAM role, attaching the role to the AWS managed policy, creating an IAM instance profile with the IAM role and finally attaching the IAM instance profile to the Amazon EC2 instance.

Next, run terraform init
Then run terraform plan
And finally run terraform apply

There are eleven other branches in this repository discussing other use-cases:

This code is released under the Unlincse License. See LICENSE.