How to add AWS IAM Access Keys to snapblocs

How to add AWS IAM Access Keys to snapblocs

When deploying a snapblocs stack, snapblocs provisions the stack within the customer’s AWS account. The stack is integrated with Amazon EKS for Kubernetes clusters using AWS EC2 instances and other AWS resources. snapblocs manages the lifecycle of the nodes on EC2 and other AWS services such as ELB, EBS to create a fully production-ready Kubernetes cluster that can auto-scale based on workload requirements.
snapblocs requires that IAM credentials be specified (not Root user credentials) using an AWS access key ID and associated secret access key so that snapblocs can access the customer’s AWS environment to provision the stacks on the AWS account. See AWS security credentials for details.
The access key values are encrypted and stored on the secured AWS Systems Manager Parameter Store to protect access keys from unauthorized access. They are not stored within the snapblocs SaaS application or infrastructure.

Watch the video here.
Click here to create an AWS access key and secret key.

An authorized user can add a project access key that can be shared among project members for managing stacks such as creating, deploying, etc.
Access keys created at the account level are available for use by all projects and their stacks. In essence, they are shared credentials for all projects. Stacks within that project can only use access keys created at the project level.  

To add AWS Access Key to a snapblocs Account.
  1. From the left nav, go to “Settings,” then select the “Provider Access” tab.
  2. Click "+Add new".
  3. Select "AWS" for the cloud provider, then select “Next.”
  4. For AWS access type, select "IAM Access Keys."
  5. For “Name,” enter a unique access name.
  6. Enter the AWS Key ID and Secret Access Key.
  7. (Optionally) Click "Test credentials with provider" to validate the Access Key ID and Secret Access Key.
  8. Click "Save"
To add AWS Access Key to a project
  1. From the left nav, go to “Projects."
  2. Select the project.
  3. Click "Provider Access"
  4. Click "+Add new".
  5. Select "AWS" for the cloud provider, then select “Next.”
  6. For AWS access type, select "IAM Access Keys."
  7. For “Name,” enter a unique access name.
  8. Enter the AWS Key ID and Secret Access Key.
  9. (Optionally) Click "Test credentials with provider" to validate the Access Key ID and Secret Access Key.
  10. Click "Save"
AWS Resources granted to snapblocs for access
The provided credentials will be utilized for creating, deleting, and updating the following AWS resources.
  • EKS
  • SecurityGroup / Security GroupRule (for cluster connectivity)
  • ELB (for HA Kubernetes API)
  • Auto Scaling Groups (for creation of ASGs for master and worker nodes)
  • EC2 instances / LaunchConfiguration
  • IAM Roles and Instance Profiles 

    • Related Articles

    • How to Create AWS IAM Access Keys

      AWS IAM Access Key ID and Secret Access Key IAM Access Keys is used to allow snapblocs to access your cloud provider environment for deploying your stacks, collecting statistics of your stacks, etc.  Your Access Key values are encrypted and stored on ...
    • How to add AWS IAM Role to snapblocs

      When deploying a snapblocs stack, snapblocs provisions the stack within the customer's AWS account. The stack is integrated with Amazon EKS for Kubernetes clusters using AWS EC2 instances and other AWS resources. snapblocs manages the lifecycle of ...
    • AWS Provider Access Method

      Add an AWS provider access method to snapblocs before configuring or deploying a stack. When configuring a stack, snapblocs will retrieve some AWS account information such as available VPCs, Subnets, SSH Key Pairs, etc. This information is ...
    • How to add other IAM users to provide access to AWS EKS

      After deploying a stack, if someone tries to access AWS EKS using kubectl, (s)he will get the following authorization error:       "error: You must be logged in to the server (Unauthorized)." This happens when the Amazon EKS cluster is created by an ...
    • How to Create AWS IAM Role

      IAM Role is used to allow snapblocs to access your cloud provider environment for deploying your stacks, collecting statistics of your stacks, etc.  Your IAM Role data is encrypted and stored on the secured AWS Systems Manager Parameter Store (not on ...