Configure Ezeelogin on AWS RDS
Configure Ezeelogin on AWS - RDS Remote Database
How to configure Ezeelogin to use SSL for AWS RDS. Refer this article .
1. Setting up the RDS environment
Login to AWS account > Open the RDS and proceed to create the RDS MySQL Environment. On the next page that appears, click on Create Database. This will open another page where you can define the necessary details required to set up the MySQL Database.
2. Creating the MySQL database
a. Click on the Create Database, a new page opens as follows, where you can define the database creation method and other options. Select Standard Create as the database creation method. Select the Engine Type as MySQL/mariadb and the version (check the software requirements on the article which ezeelogin supports)
Select the Engine Type as MySQL/mariadb and the version . Here i have selected MariaDB 10.2, you can select the Ezeelogin supported engine type & version.
Ezeelogin will support only on MySQL version 5.6,5.7 and MariaDB 10.2 on RDS. Other MySQL , MariaDB version on RDS will not support Ezeelogin.
b. In the next step, Provide a suitable name for the database instance, for example, I’m going to use the database instance as “ezeelogin_db”. Similarly, provide a suitable master username and password for the same. This is the username and the password, that you will be using later to connect to this MySQL instance later. Also, you must keep these credentials safe so that it can be used later again.
c. Now,we need to set some other properties which are essential to set up the RDS MySQL Environment. Select the Database Instance Size as “db.t2.micro” and Storage Type as General Purpose SSD. By default, the memory size is allocated to 20GB which is fine for the moment.
D. You should allow connections from the public network to allow and connect to the instance.
e. we should define the Connectivity settings for the RDS Database instance. Select the default VPC connection that is already available within your login. Since we will be accessing the database instance from outside the AWS Environment, we should enable the Publicly Accessible to Yes. The final step in creating the database is to select the Database Authentication Mode as Password Authentication. Once completed, click on Create Database.
Once you click on Create Database in the previous step, it might take a while for AWS to create the RDS instance and make it available for use. After a few moments, you will receive a notification that says the database has been created successfully. Click on the DB Identifier for the MySQL Database. A new page will open containing more information about the MySQL database instance. The important thing to note here is the Endpoint which is available. This endpoint information will be used later to connect to the ezeelogin.
3. You can now use the RDS MySQL instance to install ezeelogin
Follow jumpserver install article and start Ezeelogin installation
Follow the prompts and you should give the aws RDS connection connection details on prompt as follows.
Enter the hostname/ip address of the remote database server or use localhost, if you are going to run the database server on the current server.
Enter the endpoint that we copied in the previous steps as the hostname and the master username as the username here.
You can continue with the prompt and complete ezeelogin ezeelogin installation.
5.After Installation login to AWS RDS database and grant connectivity to Ezeelogin server hostname/IP on the remote database server.
You can find out the ezeelogin database name, database password from the " Review settings " on installation screen. you can also refer the article to retrieve Ezeelogin database credentials .
[email protected]:~# mysql -h ezeelogin_db.123456789012.us-east-1.rds.amazonaws.com -P 3306 -u mymasteruser -p
mysql> GRANT ALL PRIVILEGES ON ezeelogin_db .* TO 'admin'@'%' IDENTIFIED BY 'PASSWORD' WITH GRANT OPTION;
mysql> GRANT ALL PRIVILEGES ON ezeelogin_db .* TO 'admin'@'%' IDENTIFIED BY 'PASSWORD';
mysql> flush privileges;
If you are getting the following error after installation "ERROR granting access for DB user: Access denied for user 'root'@'%' to database 'ezlogin_jzgzs' " , run the following command to grant privileges manually . This error usually pop-ups while using remote MySQL database/ RDS connections.
Login to MySQL as root or admin user & replace with your ezeelogin database credentials .Ezeelogin database credentials such as dbname, dbusername & dbpassword will displayed on installation screen[reviewsettings]) or you can refer the article to retrieve Ezeelogin database credentials.
[email protected]:~# mysql -u root -p
mysql> grant all on ezeelogin_dbname.* to 'ezlogin_dbusername'@'%' identified by 'ezeelogin_dbusername_password' ;
mysql> flush privileges;
For Example: mysql> grant all on ezlogin_jzgzs.* to 'ezlogin_xynqwd'@'%' identified by '!T3}3w$czV$6VrWxG)kn{5&3t5'; ( Database credentials such as dbname, dbusername & dbpassword will displayed on installation screen[reviewsettings])
6. Make sure to grant access to the ezeelogin database user by running the below command
mysql > GRANT ALL PRIVILEGES ON ezlogin_databasename.* TO 'ezlogin_mysqldatabase_username'@'%' IDENTIFIED BY 'password' WITH GRANT OPTION;
mysql> flush privileges;