[one-users] EC2 / cloud bursting - multiple AWS credentials

Carlos Martín Sánchez cmartin at opennebula.org
Thu Jan 30 07:26:57 PST 2014


Hi Stefan,

On Thu, Jan 30, 2014 at 7:52 AM, Stefan Kooman <stefan at bit.nl> wrote:

> Hi,
>
> I was reading through Amazon EC2 prerequisites [1] which implies that
> there can be only one set of AWS credentials per opennebula cloud. Is
> that correct? This might not be a problem for a "private cloud" operated
> by only one organisation / company. For a public cloud that want's to
> leave room for 3rd party cloud bursting it is a problem. Ideally every
> user / group should be able to provide his/her own credentials while
> instantiating/creating a new vm. What is the reason to use a config file
> for this instead of having this info in a template?
>
> Gr. Stefan
>
> [1]:
>
> http://docs.opennebula.org/4.4/advanced_administration/cloud_bursting/ec2g.html#prerequisites


Actually you can define multiple ec2 accounts, see the Multi EC2
Site/Region/Account section of that guide [1]. You can create a hybrid host
for each group, and then adjust the permissions so each one can only deploy
VMs in the host with the right credentials.

We could come up with an ec2 driver that reads the credentials from the VM
template, although I'm not sure how difficult it would be to make it work
with the current code. Please open a feature request if the above multi
account feature does not solve your use case.

Regards

[1]
http://docs.opennebula.org/4.4/advanced_administration/cloud_bursting/ec2g.html#multi-ec2-site-region-account-support

--
Carlos Martín, MSc
Project Engineer
OpenNebula - Flexible Enterprise Cloud Made Simple
www.OpenNebula.org <http://www.opennebula.org/> | cmartin at opennebula.org |
@OpenNebula <http://twitter.com/opennebula>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opennebula.org/pipermail/users-opennebula.org/attachments/20140130/50a294a6/attachment-0002.htm>


More information about the Users mailing list