- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-25-2020 12:58 PM
Multiple versions include: Madrid, New York, and Orlando
I am working on a team that has been tasked with configuring the Cloud Management plugin to provision resources to multiple cloud providers. We have been using Terraform as a universal templating language and would like to use those same (or modified) templates within ServiceNow. We were able to configure the Cloud Management: Terraform Connector plugin to discover the templates on a server as per the documentation, but we are having trouble provisioning resources in AWS. We have successfully provisioned resources in Azure using this method.
The Cloud Management: Terraform Connector plugin states that AWS is not yet officially supported; however, if anyone is doing anything similar and would like to share some details, that would be greatly appreciated.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-27-2020 10:04 AM
Hi, we have successfully replicated the Terraform Azure capabilities for AWS. Essentially this was done by copying the required elements from the Azure DC Resource Block to the AWS equivalent. For this to work you will need to:
ensure that the AWS DC Resource Block has the "Terraform Orchestration Interface" added to the list of Guest Interfaces.
Then you need to add the CreateStack and DeleteStack Operation Steps to the the Terraform Orchestration Interface, with the the same input parameters as those in the Azure Resource Block.
You also need to add two response processors and the associated scripts for Provision and DeProvision operations (eg: AWS_TF_Provision_Response_Processor and AWS_TF_Deprovision_Response_Processor). You can copy the required script content from the equivalent Azure_TF.... resource scripts.
Another required step in the latest CMP version is to correctly configure the required credential mappings in the Terraform Iac Provider Settings for AWS. You'll need the secret_key and access_key mapped.
We have got this working reliably, and I think I've covered all of the required steps, but it's possible that I have missed out some steps.
Good luck 🙂
Stu
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-27-2020 10:04 AM
Hi, we have successfully replicated the Terraform Azure capabilities for AWS. Essentially this was done by copying the required elements from the Azure DC Resource Block to the AWS equivalent. For this to work you will need to:
ensure that the AWS DC Resource Block has the "Terraform Orchestration Interface" added to the list of Guest Interfaces.
Then you need to add the CreateStack and DeleteStack Operation Steps to the the Terraform Orchestration Interface, with the the same input parameters as those in the Azure Resource Block.
You also need to add two response processors and the associated scripts for Provision and DeProvision operations (eg: AWS_TF_Provision_Response_Processor and AWS_TF_Deprovision_Response_Processor). You can copy the required script content from the equivalent Azure_TF.... resource scripts.
Another required step in the latest CMP version is to correctly configure the required credential mappings in the Terraform Iac Provider Settings for AWS. You'll need the secret_key and access_key mapped.
We have got this working reliably, and I think I've covered all of the required steps, but it's possible that I have missed out some steps.
Good luck 🙂
Stu
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-27-2020 10:52 AM
Hi Stuh,
Thanks for the info. Would you be able to tell me where I can find the response processor scripts?
Thank you
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-27-2020 11:08 AM
Also, What should I be using as the credential resolver?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-28-2020 01:05 AM
Hi - if you search in the Resource Script tab of the Azure Datacenter Resource Block for *TF, you will see the required scripts: Azure_TF_Delete_Stack and Azure_TF_Provsion_Response_Procesor. You should copy and paste the script content into the relevant AWS Resource Scripts. Then make sure you specify the correct response processor for the two AWS Terraform Orchestration Steps CreateStack and DeleteStack.
For the credential Resolver in the IaC Provider Settings, I think it works if you leave it blank. If you need to enter a value, put in TerraformProviderCredentialResolver - but I've not verified whether this value is actually used.
Hope this helps - it's possible that I've missed out a step somewhere, so feel free to respond with any more queries.
cheers,
Stu
