Creating an IAM Role

Create an IAM role with permissions for provisioning systems in AWS and associate the role with Teradata Hybrid Cloud Manager so that it can provision instances without requiring secret user credentials.
  1. In the AWS IAM Console, create a role.
  2. Give trusted access to the Teradata Hybrid Cloud Manager ARN:
    arn:aws:sts::$AWS_ACCOUNT_NUMBER:assumed-role/$HYBRID_CLOUD_ROLE/$HCM_INSTANCE_ID
    where $AWS_ACCOUNT_NUMBER is the user's AWS account number, $HYBRID_CLOUD_ROLE is the IAM role assigned to the Teradata Hybrid Cloud Manager EC2 instance, and $HCM_INSTANCE_ID is the Teradata Hybrid Cloud Manager instance ID.
  3. Attach the policy to the role:
    {
    "policy_document":
    {
    "Version": "2012-10-17",
    "Statement":
    [
    {
    "Action": "ec2:*",
    "Resource": "*",
    "Effect": "Allow"
    },
    {
    "Action": "iam:*",
    "Resource": "*",
    "Effect": "Allow"
    }
    ]
    }
    }
  4. Copy the ARN of the created role.
  5. In Teradata Hybrid Cloud Manager, click Add a Cloud Provider and enter the ARN in the IAM role field.

results matching ""

    No results matching ""