PingIntelligence

Creating an AMI for ASE

Create an Amazon Machine Image (AMI) for API Security Enforcer (ASE).

Steps

  1. Create an RHEL 7.6 or Ubuntu 16.04 LTS EC2 instance.

  2. Install the Amazon Web Services (AWS) command-line interface (CLI):

    1. Install Python 2.7.

    2. Run the following command:

      sudo curl "https://s3.amazonaws.com/aws-cli/awscli-bundle.zip" -o "awscli-bundle.zip"

    3. Extract the CLI bundle:

      sudo unzip awscli-bundle.zip

    4. Install the CLI:

      sudo ./awscli-bundle/install -i /usr/local/aws -b /usr/bin/aws

  3. Download the ASE AWS binary. After downloading the file, copy the ASE file to the /optdirectory.

  4. To untar the binary in the EC2 instance, at the command prompt, enter the following command to untar the ASE file:

    tar –zxvf ase-rhel-4.0.tar.gz

    Result:

    tar –zxvf  <filename>

  5. To verify that ASE successfully installed, enter the ls command at the command prompt:

    /opt/$ ls
pingidentity ase-rhel-4.0.tar.gz

    Result:

    This lists the PingDirectoryand the build’s tar files.

  6. Change the directory to /opt/pingidentity/ase/bin.

  7. Run the install_service.sh aws script:

    /opt/pingidentity/ase/bin$sudo ./install_service.sh aws
Installing ASE service for AWS Autoscale
This script will install ASE as a service
Do you wish to proceed (y/n)? y
Starting service installation
RHEL7.6 detected, installing ASE service
Created symlink from /etc/systemd/system/multi-user.target.wants/ase.service to /etc/systemd/system/ase.service.
ASE service successfully installed

  8. Create an AMI using this EC2 instance.

    When you are creating the AMI, do not select the No Reboot option.