how to create ec2 instance in aws using terraform

Prerequisites To follow this tutorial you will need: The Terraform CLI (1.2.0+) installed. (i) On your machine, create a folder for your Terraform project. Templates let you quickly answer FAQs or store snippets for re-use. You should have successfully reached the Jenkins Getting Started page that is displayed on every new Jenkins installation. Terraform contains mainly five files as main.tf , vars.tf , providers.tf , output.tf and terraform.tfvars. 7. Create a VPC and subnets Create an internet gateway and route table to make the subnet public Create security groups Create an ec2 instance on a public subnet and install nginx Every block of code in this article needs to be added to a .tf file and run using terraform to setup the infrastructure. In our case it is AWS. You have a new hire in your team, Infrastructure as Code is a Brilliant Concept in DevOps and Packer and Terraform are two major technologies/products in this segment. Choose Next. Once all the pre-requisite software are installed, proceed to the next sections. This command is used to apply the changes required to reach the desired state of the configuration or the pre-determined set of actions generated by a terraform plan execution plan. Write Terraform configuration filesto create an EC2 Instance, Create an EC2 Instanceusing the Terraform configuration files, Develop Network Applications for ESP8266 using Mongoose in Linux, How to Setup IKEv2 IPSec VPN Using strongSwan and Let's Encrypt on Rocky Linux 9, Generating Web Site Statistics With AWStats & JAWStats On Debian Lenny, ISPConfig Perfect Multiserver setup on Ubuntu 20.04 and Debian 10, How to Install Jitsi Video Conference Platform on Debian 11, How to Install LAMP Server Stack on Ubuntu 22.04, How to Install and Configure Ansible on Ubuntu 20.04, How to Install CryptPad Collaborative Office Suite on Ubuntu 22.04, How to use grep to search for strings in files on the Linux shell, How to Install Jellyfin Media Server on Debian 11. Terraform configuration files for creating an AWS EC2 Instance Create a dedicated directory where we can create terraform configuration files. This demonstration will create multiple AWS EC2 instances using Terraform count. Once suspended, kcdchennai will not be able to comment or publish posts until their suspension is removed. Lets execute terraform destroy to tear down our infrastructure with one command. Here's an example of how to delete the AWS EC2 instance created in the previous example: terraform destroy. Now that the data object has been created, we can create the EC2 instance. The AWS CLI installed. Woo! terraform plan command is used to see the changes that will take place on the infrastructure. Change the value of "region" if you want to create the instance in some other region than what I have specified. There are two ways to Provisioning EC2 key pairs with terraform Use Existing Key Create New Key Use Existing Key You can create one key using AWS console and use the existing one which is already present as shown below Now in your terraform code, you have to just use this key name in your configuration like this resource "aws_instance" "bastion" { Fill out the vars.tfvars with your instance_type, (i) Login to the AWS Console < Search for EC2 < Select Launch instance < Scroll down to Instance type < Select Compare instance types, (ii) Search for the instance type you want < select and copy its name, (iv) Update your vars.tfvars with the value of the instance type, 15. What about S3 write access from our EC2 instance? Now that everything else has been set up, we are ready to set up the EC2 instance. Enter yes to approve destroying all resources. Linux (Ubuntu) 6. Assuming you are still logged into the Ubuntu machine using your favorite SSH client. Now, you should have 3 files, viz, variables.tf, terraform.tfvars and main.tf. Log in to the Ubuntu machine using your favorite SSH client. Change), You are commenting using your Twitter account. We have provided authentication details as AWS CLI default profile. Terraform configuration is written in a specific language namedHashicorp Configuration Languageand it can optionally be written in JSONas well. if(typeof ez_ad_units!='undefined'){ez_ad_units.push([[300,250],'howtoforge_com-box-3','ezslot_3',106,'0','0'])};__ez_fad_position('div-gpt-ad-howtoforge_com-box-3-0'); Create a dedicated directory where you can create terraform configuration files. You have been tasked with setting up the VPC, EC2, and RDS instances using Terraform. terraform apply is real-time and production. . If you are a beginner I highly recommend you to read my previous post onGetting Started With Terraform on AWS In Right Way. Terraform is a great open-source tool that provides the easiest code and configuration files to work with. Set the user details and access typeSelect Programmatic access, 4. You will notice that the apply command shows your plan output and asks you to Do you want to perform these actions?.Write yes and hit Enter to deploy the EC2 Instance. Well, you are 100% right. If you enjoyed this article then please share to your friends and if you have suggestions or thoughts to share with me then please write in the comment box. I am using "vim" as an editor to write in files, you can use an editor of your choice and copy paste the following configurations to create variables.tf, terraform.tfvars and main.tf. In a universe of various Cloud technologies (planets) like AWS, Azure, Digital Ocean etcetera. You should receive an access denied message confirming that Public Access to the bucket isnt possible. Now that the EC2 instance has been created, we can create the Elastic IP and attach it to the EC2 instance. terraform state list can list all the resources managed in our state file. Easy and happy Learning! copy the public address , select key pair name , open the SSH port (22) in security group if not enabled. So now, we should go and create these access and secret keys for your AWS account. (i) Login to the AWS Console < Search for EC2 < Select Security Groups, (ii) Select the Security Group with the name default, (iv) Add a rule to Allow SSH from My IP < Select Save rules, 22. Welcome Back, everyone! So let us go and do some farming in the AWS planet. It tells the Terraform that you will be using AWS as your provider and that you want to deploy your setup into the region us-west-2. It is always a tough choice to choose the right product from this. Choose Instances , Select Launch Instance , Here you will find the lists of Operating systems. I will sum it up for reference here. just leave the default settings alone. While we are managing our AWS Infrastructure, we cannot always afford to login to the AWS console all the time and it is not recommended from the security perspective, Whether it is On-Prem (or) Cloud-hosted, A Typical Non-Containerized Enterprise infrastructure would have ample of Virtual Machines aka Servers [ Linux ] Let us suppose that you work for the DevOps team of a Big Organization where you manage 100+ ec2 instances. Self-taught Engineer with an interest in Software/DevOps Engineering, mkdir terraform-tutorial && cd terraform-tutorial, ssh-keygen -t rsa -b 4096 -m pem -f tutorial_kp && openssl rsa -in tutorial_kp -outform pem && chmod 400 tutorial_kp.pem, terraform apply -var-file="secrets.tfvars". Which are ami and instance_type. The public key is used to encrypt and the private key to decrypt the data. If you want to learn to create an EC2 instance from the AWS console then click here. Technical Architect | DevOps Engineer | Meetup Organiser, export AWS_ACCESS_KEY_ID="". Configuration:Configuration consists of one or more arguments that are specific to the resource. In this article, we will see how to create an EC2 Instance using Terraform. I thought it would be wiser to choose AWS as our cloud provider for this post. This command is used to initialize a working directory containing the terraform configuration files. On the other hand, Jenkins is an open-source automation server that can serve as a simple continuous integration tool or a continuous delivery hub for your software projects. Adding a comment below on what you liked and what can be improved. First, we will need to install the MySQL client. Create variables.tf which contains the declaration and definition of the variables. you will see instance is created in AWS. This will install the latest module and provider versions. These are the list of steps we are going to perform, Copy the following content and save it as main.tf and make sure that the directory has no other *.tffiles present, as terraformwould consider all the files ending with .tfextension. We and our partners use cookies to Store and/or access information on a device. 3. Copy the Access key ID and Secret access key Store these credentials somewhere safely as you will need to access them later, 8. Lets now dive into Terraform files and Terraform directory structure that will help you write the Terraform configuration files later in this tutorial. All of these can manage IaC and work with different cloud providers except Cloud Formation as it was limited only to AWS. Setup Programmatic Access Login to AWS Console, In the services, go to IAM and perform the following steps Step1: Add new user and key in the UserName Click to view the image Step2: Attach Existing Policies and Select Admin Click to view the image On the Add permissions page, select the policies that grants your instances access to the resources that they need. We're a place where coders share, stay up-to-date and grow their careers. While the world is moving towards containers and desired state and auto-scale. Now your folder should have all files as shown below and should look like. You can create an SSH key and use the public key part to create a key pair on AWS as shown below. Terraform is an open-sourceinfrastructure as codesoftware tool created by HashiCorp. We can create the AWS Key Pair using the AWS Console, AWS CLI, or PowerShell. Navigate to that path where you created the main.tf file and run the terraform init command. ; Obtain credential access through a worker's . Lets see how to create a key pair. ssh -i .pem @, ssh -i "my-terraform-created-key-pair.pem" ubuntu@ec2-35-88-44-69.us-west-2.compute.amazonaws.com, tls_private_key.key: Refreshing state [id=a3a1f837dacea7d6e2f5d928233270603ed45ede], local_sensitive_file.private_key: Destroying [id=9d4504e86d9a84921d1256cd8a51bd3f27af9bbf], https://medium.com/@roadtocloude/list/create-ec2-instances-with-infrastructure-as-code-iac-c4ca1b5067fe, https://github.com/RukayaOK/aws-ec2-creation-iac/tree/main/terraform, https://aws.amazon.com/resources/create-account/, https://developer.hashicorp.com/terraform/downloads, https://registry.terraform.io/providers/hashicorp/aws/4.45.0, https://registry.terraform.io/providers/hashicorp/tls/latest/docs, https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.RegionsAndAvailabilityZones.html, https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/connection-prereqs.html, The AWS terraform provider allows you to create AWS resources via Terraform, The TLS provider that allow you to create TLS keys and certificates via Terraform, The Local provider which allows you create files on your local host with Terraform. You should always look for the + and -signs on the terraform planoutput. Amazon EC2 enables you to scale up or down the computations such as memory or CPU when needed. Jenkins Steps : Connect to the AWS Lab Login into Jenkins Create the GitHub Credentials and DockerHub Credentials in Jenkins After creating the credentials, you can see the credentials saved as below Screenshot You can customize your theme, font, and more by creating your DEV account. Go to Network & Security and Key Pairs. This command is used to see the changes that will take place on the infrastructure.if(typeof ez_ad_units!='undefined'){ez_ad_units.push([[300,250],'howtoforge_com-box-4','ezslot_4',110,'0','0'])};__ez_fad_position('div-gpt-ad-howtoforge_com-box-4-0'); 'terraform apply' command will create the resources on the AWSmentioned in the main.tf file. Change). I hope you found this post helpful. The older your API keys are the prone they are to Malicious attacks. Once you have replaced all variables and you are ready to create an instance-. . In the AWS console we need to remember where and what to click so we risk missing step(s). Another special argument is Terraform count. First, lets start with running terraform show. The AWS provider needs to be configured with the proper credentials before it can be used. It is not recommended. Step1: Add new user and key in the UserName, Step2: Attach Existing Policies and Select Admin, Let the Values be Default Click Next till you see the following Screen. `resource "aws_instance" "terraform_Demo_EC2_Instance" { ami = "$ {var.ami_id}" count = "$ {var.number_of_instances}" instance_type = "$ {var . We have chosen 4096 as it is considered strong enough. Developers can create an Amazon EC2 instance to test software in a development or staging environment, or to deploy software to production. This post is about Terraform AWS and how to create AWS resources like EC2 instance and SecurityGroup with Terraform. This main.tf will read values of variables from variables.tf and terraform.tfvars. In the commands above, an AWS instance is created with unlimited CPU usage. Now your files and code are ready for execution. You can literally get started with EC2 in minutes using AWS Management Console. When you execute the above command, you can see that. Create a file called vars.tfvarsThis will contain the value of all your input variables, 12. It also guarantees that what we see in the planning phase would be applied when we go for committing it. Also, we going to set up a VPC, creating a key pair by Terraform automatically, to connect to your EC2 instance by SSH and we going to install NGINX on our server. Step 2: Create the Variables File The ec2_create.tf file is a base template for creating an EC2 instance, but having a separate variable file makes it dynamic. Using ChatGPT to Create AWS Cloudformation & Terraform Templates Flavius Dinu Terraform from 0 to hero 7. please do take a look by following this link, If you would like to give a chance to Terraform and want to learn all the bits and pieces of it. Create a file called ssh.tfThis will create your ssh key pair in AWS and downloads the private key locally and set permissions on the file, 12. Under Name and tags, for Name, enter a descriptive name for your instance. The following keys need to be changed with the keys of your IAM user. Notify me of follow-up comments by email. In our case it is AWS. "AMI Name: Windows". Configuration: Configuration consists of one or more arguments that are specific to the resource. When you create an EC2 instance and you know you will be doing SSH into your instance using an SSH client. document.getElementById("ak_js_1").setAttribute("value",(new Date()).getTime()); Get awesome AWS learning material delivered straight to your inbox. Scenario: Your team has been working on a web application that uses a database. In this article, we will see how to create an EC2 Instance using Terraform. So we have Successfully created an EC2 instance and a Security Group and logged into the Server. Continue with Recommended Cookies. What parameter should I add for populating the NAME field. Amazon Elastic Compute Cloud (Amazon EC2) provides the scalable capacity in the Amazon Web Services (AWS) Cloud. Another more simple command is terraform state list. We are using the -t option to specify the algorithm that we want it to use. If you have any issues connecting to the EC2 instance, try this command: Once connected to the EC2 instance, lets try connecting to the RDS instance. Included features: Automatically create a Security Group Option to switch EIP attachment CloudWatch monitoring and automatic reboot if instance hangs Assume Role capability This project is part of our comprehensive "SweetOps" approach towards DevOps. Before deploying your infrastructure, we must run terraform init to initialize the working directory where the Terraform configuration files are located. The syntax for creating a resource in Terraform is: Resource: The most important element in the Terraform language is the resource. Below piece of code is creating the ec2 instance but in AWS ec2 portal, the name is coming as empty. You can find the instructions hereInstalling Terraform CLI. We need a API programmatic access for AWS. The first thing we need to do is create the DB subnet group. Change), You are commenting using your Facebook account. If those are your exact thoughts, dont worry. We are going to be working in the main.tf file for the majority of this tutorial. We also saw how the instance can be deleted. You can remove the profile line alone and that should be it. Subscribe to our newsletter below to get awesome AWS learning materials delivered straight to your inbox. As you can see, well be working with the AWS provider. The following file presumes that you are using the AWS Config profile. You can use an editor of your choice and copy-paste the following configurations to create variables.tf, terraform.tfvars, and main.tf Create 'main.tf', which is responsible for creating VPC on to AWS with the dependent resources. Resources are also tracked in the state file which stops us from creating duplicate resources via terraform. Create 'variables.tf' which contains the declaration and definitionof the variables. Before I go any further, I think I should set the context. Step4: Go ahead and Apply it with Terraform apply, EC2 instances with different Configuration. So which argument do you plan to use in your next Terraform deployment? You can see that public IP and elastic IP is shown as same as you would expect. Now that you know how to launch multiple AWS EC2 instances on AWS using Terraform count and Terraform for_each on Amazon Web Service. The naming conventions of the tf files are only significant in letting us know the purpose of each configuration file. Fill out the vars.tfvars with your instance_ami, https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/finding-an-ami.html#finding-an-ami-aws-cli, (i) Login to the AWS Console and Search for EC2, (iii) Scroll down to the section Application and OS Images (Amazon Machine Image), (iv) Search for the instance image you want, (vi) Update your vars.tfvars with the value of the instance ami, 14. If we no longer require resources that we have created using the configuration mentioned in the main.tf file, we can use the terraform destroy command to delete all those resources. The second command to be used is 'terraform plan'. With Terraform, they can use code to streamline that process. . When we execute the above command, we can see that 1 new resource has been added and 0 has been destroyed in the output. Once unsuspended, kcdchennai will be able to comment and publish posts again. Your email address will not be published. terraform apply. IF you plan on deploying resources to a region besides us-east-1, you can modify the region value in the aws_region variable block. Set the user permissionsUnder Set permissions < Attach an existing policy < Select AdministratorAccess. This main.tf will read values of variables from variables.tf and terraform.tfvars. You may incur a small charge for creating an EC2 instance on Amazon Managed Web Service. Terraform and AWS go hand in hand and terraform has a lot of resources and configurations that support the entire AWS Infrastructure management tasks like AWS EC2 instance creation, Security Group creation, Virtual Private Cloud (VPC) Setup, Serverless set up, etc. Input command cat. Share Improve this answer Follow edited Feb 9 at 23:19 Create a file called variables.tf This will contain the name, description, type and default values of all your input variables. Let's see if our database was created. Run the following command: Once that MySQL client is installed, lets try connecting to the RDS instance. For creating the EC2 instance, we need ami and instance type. After successfully installing the terraform, we will create an EC2 instance using Terraform, and we will use the VS code editor to write the script. Some of the Terraform blocks (elements) and their purpose is given below. In the previous post on creating EC2 key pair using terraform, I covered extensively how you can create a key pair. 3-4 June 2022. /* This Terraform deployment creates the following resources: resource "aws_internet_gateway" "internet_gateway" {, resource "aws_default_route_table" "default_route" {, resource "aws_iam_instance_profile" "ec2_instance_profile" {, resource "aws_iam_role_policy" "ec2_role_policy" {, # Create EC2 Security Group and Security Rules, resource "aws_security_group" "jenkins_security_group" {, resource "local_file" "private_key_pem" {, ssh -i ec2-user@, https://pkg.jenkins.io/redhat-stable/jenkins.repo, https://pkg.jenkins.io/redhat-stable/jenkins.io.key, https://www.linkedin.com/in/brine-ndam-ketum-6ab435231. NOTE: I am using the WSL terminal in this demonstration, but you can follow along using any terminal supporting the abovementioned prerequisites. Your email address will not be published. In this project write-up, I will cover deploying an EC2 into a new VPC with Jenkins installed using Terraform. Using an existing key pair looks as simple as-, If you are creating this Key Pair for learning purposes, you can go ahead and delete your key pair. In this five part series we will create an AWS Elastic Compute Cloud (EC2) Instance using: In this post we will create an AWS EC2 Instance via Terraform. I will not be covering Jenkins in-depth in this article. Once the command completes, you should see an output similar to below: We will verify the successful state of our deployment in a few ways. Through this tutorial, you learned how to use Terraform to configure AWS VPC, EC2, and RDS instances. And you should be good to go. For more practical videos and tutorials. Make sure to generate your own SSH key and replace the value of the public key with your own. When you execute the terraform applycommand the changes would be applied to the AWS Infra. DEV Community A constructive and inclusive social network for software developers. The instructions are at the "Amazon EC2 key pairs and Windows instances" official documentation. Made with love and Ruby on Rails. . How do you do, Login to AWS Console, In the services, go to IAM and perform the following steps, Step1: Creating a Configuration file for Terraform AWS, The Terraform AWS Example configuration file, Step3: Pre-Validate the change A pilot run, # aws_instance.project-iac will be created, # aws_security_group.project-iac-sg will be created. If youno longerrequire resources you created using the configuration mentioned in the main.tf file, You can use the "terraform destroy" command to delete all those resources. To address the same I have written an article to cover how to create multiple Ec2 instances with different instance types and configuration, Terraform Create Multiple EC2 with different Configs for_each and count together. Terraform used the selected providers to generate the following execution plan. Using Terraform has many advantages over creating an EC2 instance in the AWS Console: There is an obvious barrier to entry when using terraform, in that you need to understand the programming language in order to start using it. Once done, you will have a private and public key file with you, Copy the content of the public key file and use that to create your key pair in AWS as shown below. EC2 instances are virtual machines running on AWS, and a common component of many infrastructure projects. Search for AWS IAM 3. The terraform plan command is used to create an execution plan. The Cookies collected are used only to Show customized Ads. Whenever we want this IP, we can come to this directory and execute terraform outputto get it. Delete the createdEC2 instanceusing Terraform. Once complete, all of your resources should be removed. Fill out the vars.tfvars with your desired key_pair_name. In this article, we saw the steps to create an EC2 instance in the region of our choice. Git 5. Dont worry!. Add a user 4. Once you run terraform apply, your key pair and EC2 instance get created. We will verify S3 access and the Jenkins installation with the upcoming steps. We and our partners use data for Personalised ads and content, ad and content measurement, audience insights and product development. If you don't have access to AWS, create one free tier account. In our case, we are outputting the public dns name of the instance. Step 1: The attacker gained initial access by exploiting a public-facing service in a self-managed Kubernetes cluster hosted inside an AWS cloud account. I have specified the minimum set of parameters to create an instance above. It leverages a provider platform API to create and manage resources for the respective platform (e.g., AWS, Azure, GCP, Kubernetes, etc.). How to create Secrets in AWS Secrets Manager using Terraform in Amazon account. 10. Launch EC2 instance. The database that we declared in our variable settings.database.db_name is there! To connect to our instance, we need to ensure that this default Security Group allows traffic into the created instance from our IP address. Before you can use Terraform to create infrastructure, you need to initialize a working directory. Most upvoted and relevant comments will be first. Next initialize the Terraform using terraform init command followed by terraform plan and finally terraform apply to deploy the changes. Create a file called ec2.tf This is where you will describe the EC2 instance you want to create, Note: we are referencing the key pair created from the ssh.tf file, 13. Get your subscription here. Ubuntu machine should have IAM role attached with full access to create AWS secrets in the AWS Secret Manager or administrator permissions. Otherwise, you wont be able to connect to your instance from your local system. Count, For_Each, and Ternary operators Steven Laszloffy in Level Up Coding Deploying a Two-Tier Structure with Terraform Cloud CI/CD Help Status Writers Blog Careers Privacy Terms About Text to speech Terraform configurations must declare which providers they require so that Terraform can install and use them. For creating the EC2 instance, we need ami and instance type. Create a main.tf, providers.tf, variables.tf, and outputs.tf to manage your Terraform deployment. Create an outputs.tf file This will output values after the creation of your resources. AWS account with Administrator Access permissions, AWS CLI installed and configured with your programmatic access credentials. , In this step, we will create our Terraform configuration files: main.tf, providers.tf, variables.tf, and outputs.tf.