|
|
| (56 intermediate revisions by the same user not shown) |
| Line 1: |
Line 1: |
| − | = THIS PAGE IS A DRAFT, NOT A REAL COURSE PAGE =
| + | [http://wiki.littlesvr.ca/wiki/OPS345_Lab_1 This page has moved.] |
| − | | |
| − | ''' The current schedule for OPS345 is here: [[OPS335_Weekly_Schedule]]
| |
| − | | |
| − | = AWS Console =
| |
| − | | |
| − | Log in here: https://awsacademy.instructure.com
| |
| − | | |
| − | Click "Courses" > "AWS Academy Learner Lab - Foundation Services" > "Modules" > "Learner Lab - Foundational Services"
| |
| − | | |
| − | Click "Start Lab". The first time this will take a few minutes. This will spin up all your EC2 instances which automatically shut down 4 hours after you start the lab. But your data will not be lost. Your VMs will persist until the end of the course.
| |
| − | | |
| − | = AWS cost monitoring =
| |
| − | | |
| − | * Students are responsible for their AWS usage, including paying for it
| |
| − | * No AWS alerts on AWS educate account
| |
| − | * For those not using AWS educate: Amazon CloudWatch billing alarms
| |
| − | * Always keep cost in the back of your mind when doing /anything/ on AWS
| |
| − | | |
| − | = Basic security on a public-facing server =
| |
| − | | |
| − | * A good AWS password, not used anywhere else
| |
| − | * Remove default usernames
| |
| − | * Whenever possible: don't use passwords at all, use SSH keys for logging in
| |
| − | * root is never allowed to log in remotely
| |
| − | * How to use sudo and how to configure it
| |
| − | * ssh keys, same as OPS245
| |
| − | * How to organise your SSH keys and not lose them
| |
| − | | |
| − | = AWS networking =
| |
| − | | |
| − | * Default dynamic public IP
| |
| − | * Default static private network/IP
| |
| − | * Reserving a static public IP under "Elastic IPs", cost of doing that
| |
| − | | |
| − | = First AWS VM =
| |
| − | | |
| − | * Deploy a pre-built SuSE VM ("Instance") suse-sles-15-sp2-v20201211-hvm-ssd-x86_64
| |
| − | ** Instance type t2.micro - sort of almost free
| |
| − | * Differences between SuSE and CentOS
| |
| − | * Explore the VM:
| |
| − | ** connect with user ec2-user, ssh key
| |
| − | ** no yum, use zypper
| |
| − | ** systemctl
| |
| − | ** passwd, shadow, group files
| |
| − | ** netstat -atnup
| |
| − | ** Create senecaid-admin user, no password, add to wheel group, modify /etc/sudoers
| |
| − | ** Confirm can log in as senecaid-user and successfully sudo su
| |
| − | ** Delete ec2-user
| |
