Repository files navigation

Welcome to theCyberArk PAMonCloud Controller Terraform Module repository! This project provides a tool to simplify the deployment ofPAMonCloud Controller node, which includes everything you need in order to run PAMonCloud BYOI onAmazon Web Services (AWS). It consists the required software installed, as well as permissions delegated from an IAM Instance Profile. The controller node is Amazon Linux 2023 based.

Before using these modules, ensure you have the following:

• Terraform installed
• AWS account with necessary permissions for deploying resources
• A validPAM_Self-Hosted_on_AWS.zip file containing the BYOI solution

Instructions for downloading thePAM_Self-Hosted_on_AWS.zip file can be foundhere. It should be uploaded to an S3 bucket, the deployment will ask for the S3 bucket & names in order to upload it to the controller.

Below is an example usage of this Terraform module:

module"pamoncloud_controller" {source="cyberark/pamoncloud-controller/aws"instance_type="t3.medium"vpc_cidr="172.31.0.0/16"subnet_cidr="172.31.1.0/24"allowed_ssh_cidr=["3.5.7.9/32","2.4.6.8/32"]key_name="my-key"s3_bucket_name="my-s3-bucket"s3_file_name="PAM_Self-Hosted_on_AWS.zip"}

Seeexamples directory for working examples to reference.

No modules.

You can use theterraform state show command followed by:module.<module_name>.<resource_name>
Example:terraform state show 'module.pamoncloud_controller.aws_instance.ec2_instance'
For list objects, you can useterraform state list to get all objects within the list.

• Examples: Ready-to-use examples.

This repository is subject to the following licenses:

• Terraform templates: Licensed under the Apache License, Version 2.0 (LICENSE).

We welcome contributions! Please see ourContributing Guidelines for more details.

CyberArk is a global leader inIdentity Security, providing powerful solutions for managing privileged access. Learn more atwww.cyberark.com.