AWS to GCP sans service account keys!! - Workload Identity Federation

Подписаться 155 тыс.

Просмотров 12 тыс.

50% 1

Connect your application running inside AWS to GCP without using service account keys.
cloud.google.com/iam/docs/wor...
arn:aws:sts::[aws-accnt-number]:assumed-role/[ec2-iam-role]
----------
PLEASE SUBSCRIBE ➡️bit.ly/36x6qQy ❤️
If you like my work considering buying me ☕bit.ly/3lumyqx
----------
PLAYLISTS:
- Associate Cloud Engineer Study Guide: bit.ly/37y1dYl
- Google Cloud Playlist: bit.ly/37uMZal
----------
- Questions? Thoughts? Disagreements? Tell us here in the comments.
----------
LETS CONNECT:
👍 Facebook: / multicloudguy
📸 Instagram - / multicloudguy
🐦 Twitter - / multicloudguy

Наука

Опубликовано:

4 сен 2021

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 45

@abrahamrohithroy7421 Год назад

Yes, this worked flawlessly. Awesome!

@jagdishbelapure7521 5 месяцев назад

This is awesome explanation, thank you for the video!

@arunabhamittra8652 2 года назад

Happy Teacher's Day GK Sir !!!!! Thank you for enriching our lives !

@CloudAdvocate 2 года назад

Thank you Arunabha!! Wish you the same 🙂

@shukrilius Год назад

Thank You for this useful video 👍

@MaheshVelicheti 2 года назад

Happy Teachers day Cloud Guru.

@CloudAdvocate 2 года назад

Thank you Mahesh!!!

@su-1337 2 года назад

You are amazing, you are one of few notepad++ IT guys left 😂

@CloudAdvocate 2 года назад

Lol

@shwetagairos 2 года назад

Hi GK, thank you for making these videos. You are my favorite. You did not show us the policy you attached to AWS instances. Would have been helpful.

@shukrilius Год назад

You can just create a new IAM Role and it is not necessary to add any permission, I created an empty role, attached it into an EC2 and worked. You can also use the fisrt option from WIF Granting Access session and do not "bind" it to any EC2/role,as he used in this video. It works also 😊👍

@chaitanyakrishna5873 2 года назад

First like... I am ready

@CloudAdvocate 2 года назад

Its special CK!

@mynameishappy7126 2 года назад

Excellent..waiting for this... can we do this between onprem cluster and gcp? Could you prepare a demo on that

@CloudAdvocate 2 года назад

You need Identity from onprem. If your onprem vm is part of ldap maybe it is possible. I haven't tried it though.

@mynameishappy7126 2 года назад

@@CloudAdvocate thanks for the reply...will try from my end... all the best ...

@VivekYadav-iy5os 2 года назад

Sir first of all you are a inspiring person. Now my question is i am db2dba(luw) how to shift to cloud or any pathway can u suggest step by step to acheive my goal

@TheBest-ev3lm 8 месяцев назад

Do you have a Terraform Script to perform the above?

@stkmgr00 Год назад

Hi GK, thanks for great video and it's really helpful. One question about the python program you used to list gcp buckets . what is this "GOOGLE_CLOUD_PROJECT" and value you assigned ?

@shukrilius Год назад

"GOOGLE_CLOUD_PROJECT" refers to GCP Project ID.

@lipaacharjee9083 2 года назад

Hello GK, I am not from IT background, shall I go for Cloud technology, I want to learn

@MrStark-kb7tc 2 года назад

Hi did you used application default credentials method with WIF?

@mallikarjuna7624 2 года назад

Hi sir ,buckets are created in gcp or ec2 instance

@gobindasaluja2097 2 года назад

will we able to use gcloud commands on Ec2 instance after all this steps?

@hardikmittal5740 2 года назад

Can you pls create a video on workload identity to access inside google cloud kubernetes without RBAC roles?!!

@Ryan-Gordon Год назад

Would this be possible to use with the gmail api? We need to be able to define "with_subject"

@logicstv Год назад

Can this be scoped to a specific gcp project rather than Org?

@shivakumarnaidu 2 года назад

Sir where can I personally chat with u??? Regarding my case

@ArulThangaRaja 3 месяца назад

how to authenticate gcloud using aws temporary terminal credentials

@benw305 2 года назад

You have to leave an EC2 instance running on AWS?

@adapasrnsdurgarao9342 2 года назад

Hi Gk I took 3 years gap after my graduation(computer science engineering) and I don't have any experience before, now I'm going to learn about cloud but I'm in confusion state which one I pick and which certificate Is beneficial to me to start career in cloud please suggest me Gk

@CloudAdvocate 2 года назад

Pick anyone cloud and start with fundamental certification or associate level certification.

@saiteju8169 Год назад

GK. If possible could you make a video to use workload identity for github OIDC token, i wanted to remove SA keys from my github actions so this can be a best fit 😊

@CloudAdvocate Год назад

Dude you read my mind. I will create that

@saiteju8169 Год назад

@@CloudAdvocate thanks a lot 😁

@CloudAdvocate Год назад

ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-zRF5uTWXV8Y.html there you go

@mallikarjuna7624 2 года назад

Where you created the buckets ??

@CloudAdvocate 2 года назад

Gcp