Difference between revisions of "AWS/CLI"

From Ever changing code
< AWS
Jump to navigation Jump to search
Line 31: Line 31:
  aws route53 list-reusable-delegation-sets --profile terraform-profile
  aws route53 list-reusable-delegation-sets --profile terraform-profile


=== IAM server certificates ===
List IAM server certificates, delete a certificate
List IAM server certificates, delete a certificate
  aws iam list-server-certificates | grep ServerCertificateName
  aws iam list-server-certificates | grep ServerCertificateName
Line 38: Line 39:
  aws iam upload-server-certificate --server-certificate-name new_cert_name --certificate-body file://new_cert_name.crt \
  aws iam upload-server-certificate --server-certificate-name new_cert_name --certificate-body file://new_cert_name.crt \
                                   --certificate-chain file://new_cert_name.pem --private-key file://new_cert_name.key
                                   --certificate-chain file://new_cert_name.pem --private-key file://new_cert_name.key
=== List all instances and their status ===
aws ec2 describe-instances --query 'Reservations[*].Instances[*].[State.Name,InstanceId,Tags[?Key==`Name`].Value]' --output text


= References =
= References =

Revision as of 11:14, 19 May 2018

Install AWS cli (command line)

curl -O https://bootstrap.pypa.io/get-pip.py
python get-pip.py
pip install awscli

or 

sudo apt-get install awscli  #it will update a lot of packages to Python3 but will leave 2.7 as default

Configure AWS credentials

Create default profile in ~/.aws/credentials file and ~/.aws/config file, the values are processed in this order. 

aws configure
aws ec2 describe-regions  #to get a list all available regions

The /.aws/config profile sections must have the format of [profile profile-name], except for the default profile. For example: 

# Example ~/.aws/config file
[default]
aws_access_key_id=***
aws_secret_access_key=***

[profile dev]
aws_access_key_id=***
aws_secret_access_key=***

You can also use environment variables with handy described here

Examples

Create a reusable delegation set with a unique string '20170409' 

aws route53 create-reusable-delegation-set --caller-reference 20170409

List the reusable-delegation-set created in ~/.aws/credentials profile 

aws route53 list-reusable-delegation-sets --profile terraform-profile

IAM server certificates

List IAM server certificates, delete a certificate 

aws iam list-server-certificates | grep ServerCertificateName
aws iam delete-server-certificate --server-certificate-name <cert_name>

Upload a certificate to IAM 

aws iam upload-server-certificate --server-certificate-name new_cert_name --certificate-body file://new_cert_name.crt \
                                  --certificate-chain file://new_cert_name.pem --private-key file://new_cert_name.key

List all instances and their status

aws ec2 describe-instances --query 'Reservations[*].Instances[*].[State.Name,InstanceId,Tags[?Key==`Name`].Value]' --output text

References

Retrieved from ‘http://wiki.ciscolinux.co.uk/index.php?title=AWS/CLI&oldid=2689