Deployment
Deploy AWS Landing Zone
An active engagement with OPStimus is required to access the GitHub repositories mentioned in this guide.
Terraform resources for AWS Landing Zone can be found in https://github.com/opstimus/client-aws-landing-zone
Setup a git repository in your git organization with name aws-landing-zone by cloning the contents from above repository and make below initial changes according to your organization naming.
Configure Terraform Backend
Edit backend.tf file and update s3 bucket name with your management account ID.
Configure Parameters
Edit terraform.tfvars file and update and domain parameters. Update the names for management and project accounts accordingly.
Run Deployment
terraform init
terraform plan
terraform apply
Deploy AWS IAM Identity Center
In AWS console, go to IAM Identity Center, make sure, you are in us-east-1 region and click Enable.
Initialize a git repository in your organization from https://github.com/opstimus/client-aws-iam with name aws-iam
Configure Terraform Backend
Edit backend.tf file and update s3 bucket name with your management account ID.
Run Deployment
terraform init
terraform plan
terraform apply
Deploy Terraform Backend Resources in Rest of the Accounts
In AWS console, go to CloudFormation → StackSets, make sure, you are in us-east-1 region and click Enable trusted access.
Go to the bootstrap repository directory where you cloned from https://github.com/opstimus/client-aws-terraform-bootstrap.
Configure Terraform Backend
Edit backend.tf file and update s3 bucket name with your management account ID.
Run Deployment
terraform init
terraform plan
terraform apply