ACE Automation (IaC) Portal
Content for the ACE Automation Specialty training. Includes agenda, lab guides, and more.
- 5 Topics
- 0 Replies
OverviewIn this lab you will adopt a CI/CD pipeline for making secure changes to your cloud infrastructure using the Aviatrix Multi-Cloud Networking and Security platform.Specifically, you will implement Egress FQDN Security by collaborating with Applications Development and InfoSec teams. The Developers will be making changes to a single file whenever they need to make changes to the FQDNs that their app needs egress access to. We are using the term Day 2 for the work done in this lab.Here is an overview of the tasks:Refer to the infrastructure built in Lab 1 and Lab 2 Fork new ACE code for this lab as a remote repository in your own account Personalize the code for your accounts Invite Collaborators for the Repository Create a new GitHub Branch where code changes will be made, and then secure the main branch with Branch Protection Rules Connect GitHub with Terraform Cloud via an API-driven workflowYou will implement Egress Security by collaborating with your DevOps and SecOps teams.
OverviewIn this lab you will enhance your cloud infrastructure built in Lab 1 using the Aviatrix Multi-Cloud Networking and Security platform. You will be conducting all changes on the Main branch of your existing repository from Lab 1. We are using the term Day 1 for the work done in this lab.This lab is intended to familiarize you with Terraform code modifications.Here is an overview of the tasks:Code modification View changes in the Controller UICode ModificationIt is recommended to use a localized setup with an IDE that integrates with your GitHub account. However, you can also make the code changes directly on the GitHub.com UI.Resize gatewaysACE Inc is growing now and needs to resize their gateways. The AWS Transit and Spoke Gateways are currently t2.micro. Verify this on the Controller > GATEWAYACE needs to resize their AWS gateways from t2.micro to t3.micro.Make this change by editing variables.tf fileOn GitHub.com cloud UI, click the Pencil icon to edit directly.Make the ch
OverviewIn this lab you will deploy cloud infrastructure for ACE Inc. from scratch using the Aviatrix Multi-Cloud Networking and Security platform. We are using the term Day 0 for the work done in this lab. Make sure you are logged in to your GitHub account and your Terraform Cloud account.Here is an overview of the tasks in this lab:Deploy Aviatrix Controller from Sandbox Starter Tool Gather Azure API credentials Fork ACE code for this lab as a remote repository in your own account. Learn more about what forking a repo means here. Personalize the code for your accounts Connect GitHub with Terraform Cloud Adopt a VCS-driven workflow Deploy the following infrastructure from scratch for ACE Inc. Sandbox Starter ToolRun Sandbox Starter Tool using the instructions here to deploy only a Controller. It will also deploy a CoPilot instance, but you don't need that in this training.Stop after the Controller is created, once you are provided with its Public IP address. Do not create a Transit i
CleanupAvoid excess charges by destroying your environment when done. The sequence is as follows:Destroy Lab 3 resourcesVisit Terraform Cloud > ace-iac-day-two workspace > Settings menu > Destruction & Deletion > Queue Destroy Plan. Make sure you confirm the plan to proceed with the equivalent of a terraform destroy. This is sufficient for removing your resources created by Lab 3. When it is complete, you can also delete the Workspace from Terraform Cloud. This is all documented officially here. Delete the remote repository for ace-iac-day-two in GitHub. Click on Settings and scroll all the way to the bottom to Danger Zone. Click Delete this repository. Type your repository name and click I understand the consequences, delete this repository. Destroy Lab 1 and Lab 2 resourcesRecall that Lab 1 and Lab 2 share the same Terraform state in the same Terraform Cloud Workspace. The process of Lab 1 and Lab 2 cleanup is identical to the process for Lab 3. Visit Terraform
IntroductionThe ACE Automation Specialty Training (Infrastructure as Code - IaC) brings the concepts of DevOps together by automating a secure multicloud network infrastructure through 3 hands-on labs.Pre-requisitesACE Associate certification Active AWS account Active Azure account Aviatrix Controller deployed in AWS. The training materials expect you have deployed your Controller using the Sandbox Starter Tool. If you use the Sandbox Starter Tool to deploy your Controller, keep in mind that it will also deploy a CoPilot instance. GitHub accounts (3). Sign up at https://github.com/signup. Sign in at https://github.com/login. You need to create 3 GitHub accounts for 3 separate roles (NetOps, DevOps, and SecOps). It is highly recommended to maintain separate browser login sessions for each of these 3 accounts. The accounts will be used in Lab 3. Terraform Cloud Organization account (1). Sign up at https://app.terraform.io/signup/account (read a tutorial here). Sign in at https://app.terr
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.