I got a mail from AWS that shows that I am activated a new VPC security group. But I removed all instances and VPC from my account. The mail shows like below:
Dear Amazon EC2 Customer,
Thank you for activating the Virtual Private Cloud (VPC) service for your Amazon Web Services account. Here are a few useful resources to help you familiarize yourself with VPC:
May I know the reason for this.
Thanks in advance.
Regards,
Eleena Jose
Based upon my experience, when you first use an AWS resource, Amazon sends you an introductory email with links to learn more about that service.
This does not mean that you are currently using the service. IMHO this is just an educational email to a) provide you with links to learn more b) to remind you that you are using a service in case you forget c) promote AWS.
Related
If i want to use codestar, I need to create a developer account, which is probably pretty weird. But it is even more weird, that i get redirected to creating an Amazon account.
Can anyone explain me why this is the case?
You have to pay attention to the application type
Select the right application type and AWS service in the template section
For example, if you chose AWS EC2 and Web application, AWS won't ask you for an Amazon developer account
I'm struggling to find any information of possibility to setup an alert whenever a VPC Peering connection was deleted or a new one is a Pending acceptance. Is it possible to setup such an alert? How/where I should look to? AWS documentation is nightmare to me and finding anything is even worse.
That is totally possible using AWS Config with SNS.
Read more about AWS Config here
A tutorial on how to Implement AWS Config with SNS
i want to be able to authenticate/authorize clients to produce/consume messages on certain topics. they would be part of our vpn (incl. aws). as i understand the available documentation the only option to do this is to issue client certificates and setup ACLs based on the clients DNs? Unfortunately i was not able to use my private CA (that i've created on my linux laptop) to create client certs. so the following questions arise:
is it correct that i need to setup an AWS hosted CA (ACM PCA). that would result in almost twice the setup costs incl. the minimum broker configs.
i could proxy the outer world into the msk cluster via something like "kafka rest proxy" from confluent - correct?
am i missing something? is there an easier way built into AWS?
please enlighten me :)
thanks in advance
marcel
Yes, I believe that's correct. To do client authentication over TLS, you need to provide the ARN of your private CA that's set up with AWS PCM at the time the cluster is created - and you have to use the aws command-line tool (aws kafka create-cluster ...) to create the cluster. The UI (last time I looked) didn't have anywhere to specify that ARN.
I don't know - we bit the bullet and set up a private CA with ACM.
Nope. We're hoping that eventually AWS will integrate IAM so you can authenticate as an IAM user instead of a client certificate, but that's not where it stands today. Today, it's client certificate only for authentication.
Support for Username and Password Security looks like what you want? I think it's new..
There's AWS Cognito which you might want to try https://aws.amazon.com/cognito/
I'm trying to launch an EC2 instance on my personal AWS account, but getting the following error:
Launch Failed
This account is currently blocked and not recognized as a valid account. Please contact aws-verification#amazon.com if you have questions.
Hide launch log
Creating security groups
Successful (sg-77e2ae10)
Authorizing inbound rules
Successful
Initiating launches
FailureRetry
So I sent an email explaining, and got the following answer:
Greetings from Amazon Web Services.
Thank you for contacting us regarding this matter. We reviewed your account and confirmed that your Amazon Web Services account has been successfully verified. You may now begin launching instances.
Thank you for using Amazon Web Services.
Sincerely,
Amazon Web Services
But tried again and got the same error. Sent a new email, and got the same answer. Retried and still can't launch...
Apparently there's no problem with my payment method or anything like that. Also tried to launch it in different regions, like n. virginia, oregon and são paulo. Got the same error.
Any ideas? Thanks!
Here is an email that I got from AWS:
Dear AWS Customer,
Thank you for signing up with Amazon Web Services!
As a new customer, you can launch Elastic Compute Cloud (EC2) instances in 3 AWS regions. We suggest you to use the regions US East (N. Virginia), US East (Ohio), US West (Oregon), but if you prefer other regions please contact us at aws-verification#amazon.com and let us know which 3 regions are more convenient for you. You can find the list of regions and which services are available in each of the regions at http://aws.amazon.com/about-aws/globalinfrastructure/regional-product-services/. Please make sure you are not running EC2 instances in the region you are transitioning from.
If you have a use case that requires you to run EC2 instances in more than 3 regions, please contact us at aws-verification#amazon.com describing your use case and we will increase the number of available regions.
This limitation is temporary and only affects EC2 – other AWS services are available in all regions.
Sincerely,
Amazon Web Services
So please change your region to US West (Oregon) or US East (N. Virginia) or US East (Ohio) and then it will works.
If you still want to use other regions, contact aws-verification#amazon.com for more detailed.
FreeBSD AMIs on AWS marketplace are private (https://aws.amazon.com/marketplace/pp/B00KSS55FY/) and you need to agree to the subscription before you can create instances. I want to avoid this manual agreement confirmation to streamline the deployment of my application which should only need the EC2 API credentials to get up and running.
Is there an API call to EC2 (which I could do from jclouds or a regular REST client) that could confirm the agreement or is this strictly manual process? I can't find anything mentioned in the documentation or via quick google search.