bch

Use AWS IAM user credentials

Bitnami Cloud Hosting creates temporary IAM users to perform different operations. Therefore, it is important to ensure that your AWS IAM identity has enough permissions to add these temporary users.

Follow the steps below to create the user and fetch the credentials:

  • Log in to the AWS Console.

  • Click your name in the top right corner and then, in the resulting sub-menu, click the “My Account” link.

    AWS credentials creation

  • On the resulting page, note your Amazon Account Id.

    AWS credentials creation

    NOTE: Your Amazon Account Id is different from your Amazon Account Number. Your Amazon Account Id is a single number without hyphen.

  • Click the “Services” link in the top left corner and from the resulting list, select the IAM service.

    AWS credentials creation

  • Navigate to the “Policies” section in the left navigation bar and click the “Get Started” button.

  • Click the “Create Policy” button and then select the “Create Your Own Policy” option.

  • Set the name for the policy to “BitnamiCloudHosting” and add the policy document shown below, replacing the ACCOUNT_ID placeholder with your Amazon Account ID.

    {
      "Version":"2012-10-17",
      "Statement": [
        {
          "Effect": "Allow",
          "Action": "iam:*",
          "Resource": "arn:aws:iam::ACCOUNT_ID:user/bitnami-hosting-operators/*"
        },
        {
          "Effect": "Allow",
          "Action": ["sts:GetFederationToken", "ec2:*", "cloudwatch:GetMetricStatistics", "cloudformation:*"],
          "Resource": "*"
        }
      ]
    }
    

    The message “BitnamiCloudHosting has been created. Now you are ready to attach your policy to users, groups, and roles.” will be displayed if the policy was created successfully.

  • Navigate to the “Users” section and click the “Add user” button.

  • On the “Details” page, enter a user name for use with Bitnami. Ensure that the “Programmatic access” checkbox in the “Select AWS access type” section is selected. Click the “Next: Permissions” button to proceed.

    AWS credentials creation

  • On the “Permissions” page, select the option to “Attach existing policies directly”. From the list of policies, find the new “BitnamiCloudHosting” policy. Select it and click the “Next: Review” button.

    AWS credentials creation

  • On the “Review” page, review the selected options and click the “Create user” button.

    AWS credentials creation

  • A new user and corresponding key pair, consisting of an “Access Key ID” and “Secret Access Key”, will be generated and displayed. The “Secret Access Key” value will not be displayed again, so it is important to accurately note down the “Access Key ID” and “Secret Access Key” values displayed on the screen at this point.

    AWS credentials creation

The “Access Key ID” and “Secret Access Key” can now be used to create the cloud account in the Bitnami Cloud Hosting dashboard.

IAM account usage