asantos2000 / aws-iam-bastion Goto Github PK
View Code? Open in Web Editor NEWThe AWS IAM Bastion is a variant of [cloudposse/terraform-aws-ec2-bastion-server](https://github.com/cloudposse/terraform-aws-ec2-bastion-server) that combines the ideias of [Manage AWS EC2 SSH access with IAM](https://cloudonaut.io/manage-aws-ec2-ssh-access-with-iam/) for use IAM to store and retrieve public SSH keys. The user needs access to the end hosts private key, belongs to a specific group and upload he's public key to IAM to have access to end-hosts. The key for this solutions is the sysc_iam_local_users script ([user_data.sh](bastions/user_data.sh)), provisioned with EC2 to provide this functionality.
License: Apache License 2.0