An Interest In:
Web News this Week
- April 16, 2024
- April 15, 2024
- April 14, 2024
- April 13, 2024
- April 12, 2024
- April 11, 2024
- April 10, 2024
April 19, 2021 01:18 pm GMT
Original Link: https://dev.to/ryanch79/ec2-ad-userdata-19k6
EC2ADUserData
Windows Server
AWS Managed ADAD
Name
UserData
UserData
AWS Managed ADEC2ADAD
Secrets Manager
EC2IAM2onprem.example.com/DomainJoin
EC2Name
"Statement": [ { "Sid": "ReadTag", "Effect": "Allow", "Action": "ec2:DescribeTags", "Resource": "*" }, { "Sid": "SecretsMgrRead", "Effect": "Allow", "Action": [ "secretsmanager:GetSecretValue" ], "Resource": "arn:aws:secretsmanager:<>:<AWS>:secret:onprem.example.com/DomainJoin-tewFSS" } ]
secretsmanager:GetSecretValue
Resource
ARNSecrets Manager
UserDataWindows ServerEC2
AWS Tools for PowerShellAmazonWindows ServerAMIAMIAWS Tools for PowerShell
<powershell># $domainName = "onprem.example.com"$secretName = "onprem.example.com/DomainJoin"# $secretManager = Get-SECSecretValue -SecretId $secretName# $secret = $secretManager.SecretString | ConvertFrom-Json# $username = $domainName + "\" + $secret.Account$password = $secret.Password | ConvertTo-SecureString -AsPlainText -Force$credential = New-Object System.Management.Automation.PSCredential($username,$password)# EC2IDName$instanceID = Get-EC2InstanceMetadata -Category InstanceId$nameTag = Get-EC2Tag -Filter @{Name="resource-id";Value="$instanceID"},@{Name="key";Value="Name"}$newName = $nameTag.Value# Add-Computer -DomainName "$domainName" -NewName "$newName" -Credential $credential -Passthru -Force -Restart</powershell>
EC2
Route 53 ResolverADADDNS
DHCP
UserDataDNSAD
Systems Manager AutomationChef
Original Link: https://dev.to/ryanch79/ec2-ad-userdata-19k6
Share this article:
Tweet
View Full Article
Dev To
An online community for sharing and discovering great ideas, having debates, and making friendsMore About this Source Visit Dev To