Import ECS instances and manage the accounts of ECS instances - Bastionhost

To perform O&M operations on assets by using a bastion host, you must add the assets and asset accounts to be managed to the bastion host as an administrator. You can add multiple types of assets to a bastion host. This topic describes how to import Elastic Compute Service (ECS) instances within an Alibaba Cloud account to a bastion host and create host accounts for the ECS instances as an administrator.

Prerequisites

A bastion host is purchased and enabled. For more information, see Purchase a bastion host and Enable a bastion host.
ECS instances are created. For more information, see Create an instance on the Custom Launch tab.

Procedure

Import ECS instances

Log on to the Bastionhost console. In the top navigation bar, select the region in which your bastion host resides.
In the bastion host list, find the bastion host that you want to manage and click Manage.
In the left-side navigation pane, choose Assets > Hosts.
On the Hosts page, click Import ECS Instances.
In the Select Region dialog box, select the region of the ECS instances that you want to import and click OK.
In the Import ECS Instances dialog box, select the ECS instances that you want to import and click Import.

Manage the accounts of ECS instances

After you import ECS instances to the bastion host, you can create host accounts for the ECS instances. This way, you can use the bastion host to manage the existing accounts of the ECS instances.

In the left-side navigation pane, choose Assets > Hosts.
On the Hosts page, find the ECS instance for which you want to create a host account and click Create Host Account in the Actions column.

On the Create Host Account page, configure the logon parameters of the ECS instance and click Create. The following table describes the parameters.

Parameter	Description
Protocol	The default protocol for Linux is SSH. The default protocol for Windows is Remote Desktop Protocol (RDP).
Logon Name	The username of the account that is used to log on to the ECS instance.
Authentication Type	Select Password. Note If a key is required to log on to the ECS instance, select Private Key. Then, specify a key. If you select Shared Key, you can specify a key and associate the key with multiple host accounts at a time. This enables more efficient host account management. For more information, see Use the shared key feature.
Password	The password of the account that is used to log on to the ECS instance. You can click Verify to check whether the username and password that you specify for the host account are valid. For information about how to resolve password errors, see What do I do if an error is returned during password verification for a new host account in Bastionhost?
Enable Only SFTP Permission	By default, this parameter is disabled. If you enable this parameter, SSH-based logon is disabled for the account.

Note

Bastionhost allows you to create an account for multiple hosts at a time. For more information, see Manage a host account.

What to do next

After assets are imported to the bastion host, you must add users to the bastion host as an administrator. For more information, see Step 2: Import RAM users.