Re: AWS IAM Roles

Danny Berger <dpb587@...>

Thanks! That looks very promising - I'll give it a try.

On Tue, Aug 4, 2015 at 8:43 PM, James Bayer <jbayer(a)> wrote:

dave rocamora has been looking into this a bit and getting some advice
from dmitriy:

On Tue, Aug 4, 2015 at 4:43 PM, Danny Berger <dpb587(a)> wrote:

Hi - I'm interested in being able to assign IAM Roles
to my AWS VMs. My goal is to avoid AWS credentials in my deployment
manifests and, instead, let my deployed jobs utilize the AWS metadata
endpoint to retrieve the latest credentials.

I'm also hoping such a change might eventually work for micro/boshes that
bosh-init creates, avoiding the need to manually rotate those powerful keys.

I imagine this as a new, AWS-specific cloud option for resource pools. Is
this something which would be considered as a PR, and are there any
particular considerations I should take before implementing this?



Danny Berger

Thank you,

James Bayer
Danny Berger

Join to automatically receive all group messages.