This project should help you to install a CyberArk vault and the components server into AWS using AMIs.
- Terraform (tested with 0.14.5)
- AWS CLI installed (tested with v2)
- Key pair for AWS password encryption (RSA)
- AWS CyberArk AMIs
- Cyberark EPV license file
- Upload license file (license.txt needs the actual license file content)
- Multi region support (eu-central-1, us-west-2 and us-east-1)
- Multi version support (11.7 and 12.0)
- Using KMS creating custom policy and role to access KMS
- Deploying the components AMI and configuring the PVWA,CPM and PSM on it.
- Setup AWS CLI communication by using environemnt variables or via using "aws configure"
- Create a RSA key-pair by using ssh-keygen or similar with a local file called mykey
- Test the connection and all parameters by running "terraform plan"
- If everything works, you can run "terraform apply"
(To change default parameters please use the terraform way, all paramters can be found in vars.tf)
- PSMP installation
- PTA installation
- creating a private network between the components server and the vault
- Security Groups review and limiting access
- DR installation