Skip to content

albertodebortoli/EC2macConnector

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

29 Commits
.github
.github
 
 
.swiftpm/xcode
.swiftpm/xcode
 
 
Sources
Sources
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Package.resolved
Package.resolved
 
 
Package.swift
Package.swift
 
 
README.md
README.md
 
 

Repository files navigation

EC2macConnector

EC2macConnector is a CLI tool that helps connect to EC2 Mac instances easily.

Blog post

Installation

You can build EC2macConnector yourself for the required architecture (arm64, x86_64 or both):

swift build -c release --arch arm64 --arch x86_64

and copy the executable to a folder in your $PATH such as /usr/local/bin/.

Note

Once built, the executable can be found in the .build folder, usually at .build/apple/Products/Release.

Alternatively, you can download a release from the list of releases.

Requirements

Permissions

Both commands require AWS credentials either set as environment variables (AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY) or configured in ~/.aws/credentials via the AWS CLI. Environment variables take precedence.

The user must be granted the following permissions:

  • ec2:DescribeInstances
  • secretsmanager:ListSecrets
  • secretsmanager:GetSecretValue

EC2 instances

The EC2 Mac instances must have the EC2macConnector:FleetIndex tag set to the index of the instance in the fleet. Indexes should start at 1. Instances that don't have the said tag will be ignored.

Secrets and key pairs formats

EC2macConnector assumes that the private key for each instance key pair is stored in SecretsManagers. The name of the key pair could and should be different from the secret ID. For example, the instance key pair should include an incremental number also part of the corresponding secret ID.

Consider that the number of mac instances in an AWS account is limited and it's convenient to refer to them using an index starting at 1. It's good practice for the secret ID to also include a nonce as secrets with the same name cannot be recreated before the deletion period has elapsed, allowing frequent provisioning-decommissioning cycles.

For the above reasons, EC2macConnector assumes the following formats are used:

  • instance key pairs: <keypair_prefix>_<index_of_instance_in_fleet> e.g. mac_instance_key_pair_5
  • secret IDs: <secrets_prefix>_<index_of_instance_in_fleet>_<nonce> e.g. private_key_mac_metal_5_dx9Wna73B

Usage

EC2macConnector comes with 2 commands:

  • configure: configure the tool by creating connect script and vncloc files for running EC2 mac instances.
  • connect: connect to EC2 mac instances over SSH or VNC.

Examples

Configure

ec2macConnector configure \
  --region eu-west-1 \
  --secrets-prefix private_key_mac_metal

Optionally use the --verbose flag to inspect where the private keys and configuration files have been stored.

Connect

Connect to instance with index 5 over SSH:

ec2macConnector connect 5 --region eu-west-1

Connect to instance with index 5 over VNC:

ec2macConnector connect 5 --region eu-west-1 --vnc

Note

Connecting over VNC requires an SSH session to be established first.

About

EC2macConnector is a CLI tool that helps connect to EC2 Mac instances easily.

albertodebortoli.com/2023/07/05/easy-connection-to-aws-mac-instances-with-ec2macconnector/

Resources

Readme

License

Apache-2.0 license
Activity

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 2

Release 1.0.1 Latest
Jul 5, 2023
+ 1 release

Languages