Bamboo OnDemand Security Groups

Bamboo OnDemand must run in a separate region from our EC2 instances because of license restrictions ("Maximum Number Of Elastic Instances" cannot be greater than 1 in the Configuration section). EC2 Security Groups will only allow in-Region security groups to be identified. Because of this I cannot figure out how to allow elastic bamboo instances access our EC2 instances with security integrity. These are non-VPC instances.

For example... How can I use SSH/SCP tasks without opening port 22 on my EC2 instances up to the world?

2 answers

1 vote

I think you could try assigning an Elastic IP to your instances (with instance startup script) and limit port 22 access only to the Elastic IPs assigned to you.

Is that normally how it is done? Makes sense and I can't figure out any other way to ensure the security stays in place. I'm assuming I have to create my own custom AMI and then install the AWS command line tools.

Everything you need should already be on the default image.

I was away for a few weeks and other things on the project took priority. However I followed instructions (good example here: and am able to get an instance to start up utilizing an existing Elastic IP. Thanks for the direction Przemek.

Suggest an answer

Log in or Sign up to answer
Community showcase
Published yesterday in Statuspage

194 years of downtime: looking back on incident data from 2018

Statuspage customers logged more than 194 years of collective incidents in 2018. That’s a whopping 87% increase from the  104 years logged in 2017 , and we aren’t even through December yet....

35 views 1 5
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you