You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CloudFormation/Export-FSxN-CloudFormation/README.md
+14-16Lines changed: 14 additions & 16 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -11,19 +11,17 @@ This folder provides a script that will create an CloudFormation template based
11
11
## Running the script
12
12
13
13
The script takes the following parameters:
14
-
-`-f` fs-id: The ID of the FSxN file system you want to create the CloudFormation template for. This is a required parameter.
15
-
-`-n` name: Is an optional name to be appended to all the volume, svm, NetBIOS names. This is so you could test the CloudFormation template while the original machine is still running.
14
+
-`-f fs-id`: The ID of the FSxN file system you want to create the CloudFormation template for. This is a required parameter.
15
+
-`-n name`: Is an optional name to be appended to all the volumes, svms and NetBIOS names. This is so you could test the CloudFormation template while the original machine is still running.
16
16
17
17
The script will output the CloudFormation template in JSON format. You can redirect this output to a file if you want to save it.
18
18
19
-
Note since you can't retrieve passwords the script will create parameters to allow you to provide an AWS Secrets
20
-
Manager secret that should contain the password for the 'fsxadmin' account. It will also create a parameter
21
-
to provide an AWS Secrets Manager Secret for credentials to use to join any SVMs that have Active Directory setup for them.
22
-
When you create the CloudFormation stack you will be prompted to fill in these parameters.
23
-
24
-
Note that the secret for the 'fsxadmin' account should have a key called 'password' that contains the password for the
25
-
'fsxadmin' account. The secret for the Active Directory credentials should have keys called 'username' and
26
-
'password' that contain the username and password of an account that has permissions to join machines to the Active Directory domain.
19
+
Note that since you can't retrieve credentials from the FSxN configuration the script will create
20
+
parameters that will allow you to provide an AWS Secrets Manager secret that should contain the credentials.
21
+
There will be one parameter for the password of the 'fsxadmin' account. That secret will just need one 'key'
22
+
named "password" with the desired fsxadmin password. There will also be a parameter for each SVMs that has an
23
+
Active Directory configured for it so you can provide a secret that should have a 'username' and 'password' key
24
+
that will be used to join the SVM to the domain.
27
25
28
26
An example run:
29
27
```
@@ -37,15 +35,15 @@ Warning: Could not find root volume for SVM fsa. Setting the security style to U
37
35
```
38
36
39
37
## Notes
40
-
- For multi availability zone deployments, the script will do the following in regards to the EndpointIpAddressRange;
41
-
- If the file system is in the 198.19.0.0/16 address range (the AWS default), the script will not provide an address, forcing AWS to just allocate a new address range from the 198.19.0.0/16 address range.
42
-
- If it isn't in the 198.19.0.0/16 address range, it will create a parameter so you can specify a new address range for testing purposes, with a default set to the current address range.
43
-
- Since AWS requires you to provide a junction path when creating a volume, if the script finds a volume without a junction path it will set it to `/volume name`. A warning message will be printed if this happens you alert you.
44
-
- Since AWS doesn't allow you to specify these parameters when creating a DP type volume, their current settings will be removed:
38
+
- For multi availability zone deployments, the script will do the following in regards to the Endpoint IP Address Range:
39
+
- If the file system is in the 198.19.0.0/16 address range (the AWS default), the script will not provide an address range forcing AWS to just allocate a new address range from the 198.19.0.0/16 CIDR block.
40
+
- If it isn't in the 198.19.0.0/16 address range then it will create a parameter so you can specify a new address range for testing purposes, with a default set to the current address range.
41
+
- Since AWS requires you to provide a junction path when creating a volume, if the script finds a volume without a junction path it will set it to `/volume_name`. A warning message will be outputed if this happens you alert you.
42
+
- Since AWS doesn't allow you to specify these parameters when creating a DP type volume, their current settings will be removed from the CloudFormation template:
45
43
- SecurityStyle
46
44
- SnapshotPolicy
47
45
- StorageEfficiencyEnabled
48
-
- If, for some reason, the script can't find the attributes of the root volume of a SVM (unlikely but there are valid reasons how this can happen), it will set the security style to 'NTFS' if the SVM has a Active Directory configuration. Otherwise it will assume an 'UNIX' security style. A warning message will be printed if this happens to alert you.
46
+
- If, for some reason, the script can't find the attributes of the root volume of a SVM (unlikely but there are reasons how this can happen), it will set the security style to 'NTFS' if the SVM has a Active Directory configuration, otherwise it will assume an 'UNIX' security style. A warning message will be printed if this happens to alert you.
49
47
- While some testing was performed, hence the `-n` option, not for all possible FSxN configurations were tested. If you run into any issues with the script, or have suggestions for improvements, please open an [issue](https://github.com/NetApp/FSx-ONTAP-samples-scripts/issues) on GitHub.
0 commit comments