Read Aloud the Text Content

This audio was created by Woord's Text to Speech service by content creators from all around the world.

Text Content or SSML code:

In today’s demo, we are going to see IAM role provisioning using ServiceNow CPG and terraform. We have a scenario where the Junior Cloud admin joined the company recently and he should be given proper access permissions with required and limited access to AWS resources that fulfills his job responsibility. Senior Cloud admin takes a lot of valuable time to identify correct permissions and to create an exact required role for Junior Cloud admin. Using CPG and terraform, we can provision IAM roles in a fast and agile manner. This helps the Junior cloud admin to get the required access for his job functions. Also, any new team member can be able to assume this IAM role by adding them to the relevant IAM group. ServiceNow CPG provides a single interface to access cloud resources, publish cloud offerings to a catalog, and manage the usage and lifecycle of those resources. Here we are raising request for AWS admin IAM role through the cloud catalogue. Provide all the information and submit the form. The Catalogue request goes for an approval. Cloud Administrator or Project manager approves it based on the information from catalogue request. Once the request is approved, CPG will start provisioning the IAM role for AWS admins. It attaches the IAM policies and IAM group for AWS admins is also created. Users can be added to this IAM group who can assume this IAM role. The stack details will show all the resources which got created as part of the catalogue request. In Dependency map, we can see the relationship between the stack, provisioned IAM role, IAM policy, IAM group, availability zone and AWS datacenter. In AWS console, we can see the IAM role that we provisioned now with the permission policies attached. We also got automated mail that our catalogue request is completed and Deployment is successful.