Cloud Provider Iam Check

The pf9cp CLI helps users check IAM access and confirm prerequisites for AWS, Azure and Google clouds. The CLI works by connecting to the target cloud using the same credentials as the Cloud Provider and validates if the credentials provided have the required access for Platform9 to build and manage clusters.

The pf9cp CLI supports Windows 10, macOS, CentOS 7.X and Ubuntu 18.04 / 20.04

Install on Linux & macOS

From the command line of your machine, run the following to download and install the CLI tool.

bash <(curl -sL https://pmkft-assets.s3.us-west-1.amazonaws.com/IAM_Checker/pf9cp_setup)

Successful installation should look like:

$ bash <(curl -sL https://pmkft-assets.s3.us-west-1.amazonaws.com/IAM_Checker/pf9cp_setup)
 ____  _       _    __                      ___
|  _ \| | __ _| |_ / _| ___  _ __ _ __ ___ / _ \
| |_) | |/ _` | __| |_ / _ \| '__| '_ ` _ \ (_) |
|  __/| | (_| | |_|  _| (_) | |  | | | | | \__, |
|_|   |_|\__,_|\__|_|  \___/|_|  |_| |_| |_| /_/

19:24:01:11 : Initializing: /Users/anmols/pf9
19:24:01:11 : Ensuring /Users/anmols/pf9/bin exists
19:24:01:11 : Ensuring /Users/anmols/pf9/db exists
19:24:01:11 : Ensuring /Users/anmols/pf9/log exists
19:24:01:11 : Ensuring /Users/anmols/pf9/log/cli_install.log exists
Note: SUDO access required to run Platform9 CLI.
      You might be prompted for your SUDO password.

Downloading Platform9 CLI binary...
Password:

Platform9 CLI binary downloaded.

Installing Platform9 CLI...

19:24:09:11 : Platform9 CLI installation completed successfully.
Platform9 CLI installation completed successfully !

To start testing providers type:
        pf9cp help

Install On Windows

Download the CLI from one of the links below that match your configuration.

• For windows-32 : https://pmkft-assets.s3.us-west-1.amazonaws.com/IAM_Checker/pf9cp-win32.exe

• For windows-64 : https://pmkft-assets.s3.us-west-1.amazonaws.com/IAM_Checker/pf9cp-win64.exe

If using Windows, ensure that the downloaded exe file is located in a folder that is on the PATH environment variable. You can accomplish this by either copying it into a folder that's already on the PATH or by adding your folder to the PATH.

For example:

• Create a folder named pf9 in C drive.

• Copy the downloaded pf9cp-win64.exe to the C:\pf9 folder. Rename the file to pf9cp for convenience.

• Add C:\pf9 folder to your path by doing the following:

• Type Edit the system environment variables

  • Open the option Edit the system environment variables

  • Click Environment variables... button

  • Under the System Variables box, find Path variable

  • Click Edit

  • A window pops up, click New

  • Type the C:\pf9 in it.

  • Click OK on all open windows and restart the command prompt to use it.

PF9CP CLI Commands

Syntax Example

All Available Commands and Flags

Command Examples

Command: check-amazon-provider

This command checks if a user have the appropriate Amazon cloud permissions.

Follow this link to get your AWS access key and secret key if you do not have them: https://docs.aws.amazon.com/powershell/latest/userguide/pstools-appendix-sign-up.html

A successful command effort should look like:

Command: check-google-provider

This command checks if the user has Google cloud permissions.

Follow this link to get your Google service account keys if you do not have them: https://cloud.google.com/iam/docs/creating-managing-service-account-keys

A successful command output will look like this.

Command: check-azure-provider

This command checks that a user's Azure cloud permissions are set correctly.

Follow this link to get your Azure tenant information if you do not have it: https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/active-directory-how-to-find-tenant.

Command Examples

A successful command output should look like this.