Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more
Atlassian Community about banner
4,256,592
Community Members
 
Community Events
164
Community Groups

EC2 elastic agent security groups.

Alistair.Mackay
Alistair.Mackay Aug 06, 2019

Hi,

Having issues starting EC2 elastic agents within a VPC.

The way our VPC is configured, I require the agents to be assigned an additional security group to correctly function - specifically to get access to our corporate DNS server which is located on another subnet within the VPC. I have confirmed that when I manually add the required security group then run the agent start script, then the agent loads and the bamboo server marks the agent as ready.

How can I get the security group assignment configured?

Thanks.

 

Answer
Watch
Like Be the first to like this
341 views

1 answer

1 accepted

0 votes
Answer accepted
Daniel Santos
Daniel Santos Atlassian Team Aug 19, 2019

Hi @Alistair.Mackay

Your question seems pretty similar to this one:

Have you tried to configure this in AWS side?

The VPC on Bamboo side is configured through Image configurations >> Edit (the image you want)>> Use Virtual Private Cloud, but I guess this is not your issue, right?

View More Comments
Alistair.Mackay
Alistair.Mackay Aug 19, 2019

Hi @Daniel Santos 

The underlying issue is that in the VPC into which the agents are being launched, the only available DNS server is provided by an Active Directory instance. In order to reach that server, an additional security group is needed on the newly launched elastic instance.

We did not want to add a heap of AD rules to the default bamboo SGs.

I solved this by creating a lambda that's triggered when the instance is launched. This lambda adds the required SG before the instance reaches the agent load phase.

 

Cheers,

Like # people like this
Daniel Santos
Daniel Santos Atlassian Team Aug 20, 2019

Hi @Alistair.Mackay

Thank you so much for sharing how you solved the problem. This will certainly help other users that may face the same issue.

Like
Alistair.Mackay
Alistair.Mackay Aug 20, 2019

When I have time, I'll publish the solution in my GiHub account.

Like Daniel Santos likes this
Daniel Santos
Daniel Santos Atlassian Team Aug 21, 2019

Great move! Thank you!

Like
Like # people like this
Daniel Santos
Daniel Santos Atlassian Team Aug 26, 2019

Hi @Alistair.Mackay

Thank you for the awesome community initiative.
It does not matter the purpose of a given community, it will only succeed if we have people like you that take the time needed to share what they know with others.

Have a wonderful week ahead! =]

Like Steffen Opel _Utoolity_ likes this
Reply

Suggest an answer

Log in or Sign up to answer
Bamboo
Bamboo
TAGS
Community showcase
Martyna Wojtas
Martyna Wojtas
Published in Bamboo

Bamboo Data Center on Kubernetes

Hi, If you are running self-managed environments and looking to adopt modern infrastructure, Bamboo Data Center can now be deployed in a Kubernetes cluster. By leveraging Kubernetes, you can easily...

669 views 3 8
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you