Skip to content
/ User-Provisioning-Script Public

An automated solution using AWS CDK and TypeScript to streamline IAM user creation and management. This script sets up users, assigns them to groups, attaches policies, tags users, and enforces MFA for enhanced security.

medium.com/@solemn_dave/user-provisioning-script-aws-cdk-d16f21f28b89
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SolemnDave/User-Provisioning-Script

BranchesTags

Repository files navigation

Architecture

User-Provisioning-Script Architecture

Table of Contents

Overview

The User Provisioning Script is an automated solution developed using the AWS CDK (Cloud Development Kit) with TypeScript. This script streamlines the process of creating and managing AWS IAM users, assigning them to specific groups, attaching relevant policies, tagging users for better organization, and enhancing security with Multi-Factor Authentication (MFA).

Features

  • Automated User Creation: Automatically create IAM users with specified configurations.
  • Group Assignment: Assign users to predefined IAM groups based on their roles or job functions.
  • Policy Attachment: Attach appropriate IAM policies to groups to control user permissions.
  • User Tagging: Add tags to users for better organization and cost allocation.
  • Enhanced Security: Implement Multi-Factor Authentication (MFA) for added security.

Tech Stack

  • Amazon Web Services (AWS)
    • IAM: For managing users, groups, roles, and policies.
    • CDK (Cloud Development Kit): For defining cloud infrastructure using TypeScript.
  • TypeScript: Programming language used for writing the infrastructure code.
  • Node.js: JavaScript runtime environment for executing code and managing dependencies.
  • AWS SDK for JavaScript: To interact with AWS services programmatically.
  • Git: Version control system for tracking changes in the project.
  • NPM: Package manager for installing dependencies.

Setup

  1. Install Node.js and NPM:

    • Download and install Node.js and NPM.
    • Install AWS CLI:
      brew install awscli
    • Install and configure the AWS CLI with your AWS credentials by following the instructions here.

  2. Set up AWS CDK: - Install the AWS CDK globally using NPM:

    npm install -g aws-cdk

  3. Bootstrap your AWS environment to set up the necessary resources for the AWS CDK:

     cdk bootstrap

  4. Initialize a New CDK Project:

    • Create a new directory for your project and navigate into it:
    mkdir user-provisioning-script
cd user-provisioning-script

  5. Initialize a new CDK project in TypeScript:

    cdk init app --language=typescript

  6. Install Required CDK Libraries:

    • Install the necessary AWS CDK libraries for IAM, Lambda, and other services:

      npm install @aws-cdk/aws-iam @aws-cdk/aws-lambda @aws-cdk/aws-sns @aws-cdk/aws-sns-subscriptions @aws-cdk/aws-s3 @aws-cdk/aws-cloudtrail @aws-cdk/aws-s3-notifications constructs

  7. Define IAM Groups and Policies:

    • Create IAM groups and define the policies for each group.

  8. Create IAM Users and Attach to Groups:

    • Create IAM users and assign them to the predefined groups, add tags, and enable MFA.

  9. Deploy the Stack:

  • Deploy the CDK stack to your AWS account:

    cdk deploy

Check out the Python Verson: https://github.com/SolemnDave/User-Provisioning-Script/tree/python

About

An automated solution using AWS CDK and TypeScript to streamline IAM user creation and management. This script sets up users, assigns them to groups, attaches policies, tags users, and enforces MFA for enhanced security.

medium.com/@solemn_dave/user-provisioning-script-aws-cdk-d16f21f28b89

Topics

aws typescript tagging iam iac rbac role-based-access-control mfa user-provisioning

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages