Quick Start
Static credentials are the fastest way to get Terrateam working with AWS. You’ll create an AWS IAM user with programmatic access and store the credentials as GitHub secrets.
Static Credentials
Setup Steps
Section titled “Setup Steps”-
Create an IAM User
Section titled “Create an IAM User”Create a dedicated IAM user for Terrateam in your AWS account:
Terminal window aws iam create-user --user-name terrateam -
Attach Permissions Policy
Section titled “Attach Permissions Policy”Attach an IAM policy to give Terrateam the necessary permissions. We suggest
PowerUserAccessas a starting point:Terminal window aws iam attach-user-policy \--policy-arn arn:aws:iam::aws:policy/PowerUserAccess \--user-name terrateam -
Create Access Keys
Section titled “Create Access Keys”Generate access keys for the terrateam user:
Terminal window aws iam create-access-key --user-name terrateamThis command will output something like:
{"AccessKey": {"UserName": "terrateam","AccessKeyId": "AKIAIOSFODNN7EXAMPLE","Status": "Active","SecretAccessKey": "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"}} -
Set GitHub Secrets
Section titled “Set GitHub Secrets”Add the AWS credentials as secrets to your GitHub repository:
Terminal window # Set your repository (replace with your actual org/repo)export REPO="your-org/your-repo"# Create the AWS Access Key ID secretgh secret --repo "$REPO" set AWS_ACCESS_KEY_ID# Create the AWS Secret Access Key secretgh secret --repo "$REPO" set AWS_SECRET_ACCESS_KEYWhen prompted, paste the corresponding values from step 3.
Security Considerations
Section titled “Security Considerations”Next Steps
Section titled “Next Steps”Now that you have AWS authentication configured, you are now able to use Terrateam for plan and apply operations against AWS resources.
- Read about Terrateam configuration to customize your workflows
- Learn about advanced workflows for more complex setups
- Consider migrating to OIDC authentication for enhanced security