I am looking for a way to manage Confluent Cloud (Kafka) infrastructure (cluster/topics etc.) using CloudFormation. So far I have only found a way to do this in Terraform, but not with CloudFormation.
Is there anyway to achieve this using CloudFormation?
Related
We have a project where we need to migrate EKS ( Elastic Kubernetes Services ) clusters to AKS ( Azure Kubernetes Services ). What are the steps that we need to follow to successfully migrate those clusters.
With some research found that we can only migrate though backing up kubernetes cluster on AWS storage bucket and then moving it to a blob storage on Azure and then configuring AKS settings.
Is this the right approach?
Yes, you can use the tools like Velero to Backup & restore the Kubernetes cluster.
i have written the Article you can refer the same : https://faun.pub/clone-migrate-data-between-kubernetes-clusters-with-velero-e298196ec3d8
You can leverage the plugin with Velero tools as per requirement EKS & AKS both supported.
I am trying to create AWS Kinesis Data Analytic(KDA) App via cdk. I need to put this KDA app inside a VPC but I am not able to find any cloudformation(cdk) support to add it. I can see vpc configiration api is exposed by aws kinesis sdk but it is not exposed via cdk. Anybody has any references on how to do it. Please do share the code or documentation reference
I setup a EKS cluster and integrated AWS Secrets Manager in it following the steps mentioned in https://github.com/aws/secrets-store-csi-driver-provider-aws and it worked as expected.
Now we have a requirement to integrate the AWS Secrets Manager on an on-premises k8s cluster and I am unable to follow the same steps as they seem to be explicitly for AWS EKS based clusters.
I googled around a bit and found you can call the Secrets Manager programmatically using one of the ways in https://docs.aws.amazon.com/secretsmanager/latest/userguide/asm_access.html, but this approach wont work for us.
Is there a k8s way to directly connect to AWS secrets Manager without setting up AWS-CLI and the OIDC cluster ID on the on-premises cluster?
Any help would be highly appreciated.
You can setup external OIDC providers with AWS and also setup K8s to with OIDC, but that is a lot of work.
AWS recently announced IAM Roles Anywhere which will let you use host based certificates to authenticate, but you will still have to call the Secrets Manager APIs.
If you are willing to retrieve secrets through etcd (which may store the secrets base64 encoded on the cluster) you can look at using the opensource External Secrets solution.
I am working on a Cloud provider named Wekeo, which offers only static provisionning of instances. I have access to the Morpheus API and the underlying OpenStack API.
My goal is to deploy an elastic cluster (EKS for instance), but I'm getting lost through the many concepts and tools I found so any guidance would be appreciated!
I am trying to implement Azure osba service broker on google cloud shell to interact with google cloud kubernetes and Azure services, but i am not able to run it and always commands are ending in some error.
I have installed helm and service catalog also. Please suggest me any simple service broker for google cloud shell which i can implement easily for demo purpose. Can i use Google shell cloud MySQL ( GCP)? Please provide any information in form of website link or github.
You can use config connector to manage your Google Cloud Platform (GCP) resources through Kubernetes configuration as Google cloud platform service broker is deprecated.
This documentation will help you to get started with config connector by managing a cloud spanner instance. You can also refer to this repository that contains sample applications and resources like PubSub for use with Config Connector