-
Notifications
You must be signed in to change notification settings - Fork 2
Setup AWS for Erwhi Simulation
Giovanni Bruno edited this page Apr 11, 2019
·
4 revisions
- Go to console.aws.amazon.com/s3
- Press on + Create bucket
- Give a unique name (e.g. erwhi-source), choose a Region and press next
- Choose your settings basing on your requirements and press next
- If you want your S3 Bucket private, check all marks and "Do not grant ...". Then press next
- Review if everything is ok! Then press Create bucket
- You have successfully created a S3 bucket to contain source files of your Erwhi robot
- Repeat steps from 2 to 6 to create an output bucket used for logs and bags (e.g. erwhi-output)
- You have successfully created a S3 bucket to contain output files of your running Erwhi robot
- Go to console.aws.amazon.com/iam/policies
- Press on Create Policy
- Then click on JSON tab and cancel everything
-
edit following JSON changing bucket-source, bucket-output and yourAWScode:
{
"Version": "2012-10-17",
"Statement": [
{
"Action": "s3:ListBucket",
"Resource": [
"arn:aws:s3:::bucket-source"
],
"Effect": "Allow"
},
{
"Action": [
"s3:Get*",
"s3:List*"
],
"Resource": [
"arn:aws:s3:::bucket-source/*"
],
"Effect": "Allow"
},
{
"Action": "s3:Put*",
"Resource": [
"arn:aws:s3:::bucket-output/*"
],
"Effect": "Allow"
},
{
"Action": [
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents",
"logs:DescribeLogStreams"
],
"Resource": [
"arn:aws:logs:*:yourAWScode:log-group:/aws/robomaker/SimulationJobs*"
],
"Effect": "Allow"
},
{
"Action": [
"ec2:CreateNetworkInterfacePermission"
],
"Resource": [
"arn:aws:ec2:*:yourAWScode:*"
],
"Effect": "Allow"
},
{
"Action": [
"ec2:AssociateRouteTable",
"ec2:CreateSubnet",
"ec2:DeleteNetworkInterface",
"ec2:DeleteSubnet",
"ec2:DescribeNetworkInterfaces",
"ec2:DescribeSecurityGroups",
"ec2:DescribeSubnets",
"ec2:DescribeVpcs"
],
"Resource": "*",
"Effect": "Allow"
}
]
}
and paste in JSON tab
NOTE: bucket-source and bucket-output are your S3 buckets. You can find yourAWScode in IAM dashboard as https://yourAWScode.signin.aws.amazon.com/console
5. click on Review your policy
6. Give a name (e.g. erwhi-robomaker-policy) and press Create policy
- Go to roles
- Press on Create role
- Choose RoboMaker and RoboMaker - Simulation, then press Next: Permissions
- Add policy you created before (e.g. erwhi-robomaker-policy) and press Next: Tags
- This is optional, so click on Next: Review
- Give a name to the role (e.g. erwhi-robomaker), then click on Create role
- Opening your new role, you should see this in "trust relationships -> edit trust relationships":
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": "robomaker.amazonaws.com"
},
"Action": "sts:AssumeRole"
}
]
}
Your AWS account has all you need to simulate Erwhi.
Now you can go to next step.
Copyright (c) 2019 Giovanni di Dio Bruno under MIT license