All Products
Search

This Product

    CloudOps Orchestration Service:ACS-ECS-BulkyInstallAegisAgent

    Document Center

    CloudOps Orchestration Service:ACS-ECS-BulkyInstallAegisAgent

    Last Updated:Sep 20, 2024

    Template name

    ACS-ECS-BulkyInstallAegisAgent

    Execute Now

    Template description

    Installs the Security Center agent on multiple Elastic Compute Service (ECS) instances at a time.

    Template type

    Automated

    Owner

    Alibaba Cloud

    Input parameters

    Parameter

    Description

    Type

    Required

    Default value

    Limit

    targets

    The ECS instances on which you want to install the Security Center agent.

    Json

    Yes

    regionId

    The region ID.

    String

    No

    {{ ACS::RegionId }}

    rateControl

    The rate control settings.

    Json

    No

    {'Mode': 'Concurrency', 'MaxErrors': 0, 'Concurrency': 10}

    OOSAssumeRole

    The Resource Access Management (RAM) role that is assumed by CloudOps Orchestration Service (OOS).

    String

    No

    ""

    Output parameters

    None

    Permission policy that is required to execute the template

    {
    "Version": "1",
    "Statement": [
        {
            "Action": [
                "ecs:DescribeInstances"
            ],
            "Resource": "*",
            "Effect": "Allow"
        },
        {
            "Action": [
                "yundun-sas:DescribeAgentInstallStatus",
                "yundun-sas:DescribeCloudCenterInstances",
                "yundun-sas:OperateAgentClientInstall"
            ],
            "Resource": "*",
            "Effect": "Allow"
        }
    ]
}

    References

    For more information, see ACS-ECS-BulkyInstallAegisAgent.yml at GitHub.

    Template content

    FormatVersion: OOS-2019-06-01
Description:
  en: Bulky install aegis agent on ECS instance
  zh-cn: the description in Chinese
  name-en: ACS-ECS-BulkyInstallAegisAgent
  name-zh-cn: the description in Chinese
  categories:
    - instance_manage
Parameters:
  regionId:
    Type: String
    Label:
      en: RegionId
      zh-cn: the description in Chinese
    AssociationProperty: RegionId
    Default: '{{ ACS::RegionId }}'
  targets:
    Type: Json
    Label:
      en: TargetInstance
      zh-cn: the description in Chinese
    AssociationProperty: Targets
    AssociationPropertyMetadata:
      ResourceType: 'ALIYUN::ECS::Instance'
      RegionId: regionId
  rateControl:
    Label:
      en: RateControl
      zh-cn: the description in Chinese
    Type: Json
    AssociationProperty: RateControl
    Default:
      Mode: Concurrency
      MaxErrors: 0
      Concurrency: 10
  OOSAssumeRole:
    Label:
      en: OOSAssumeRole
      zh-cn: the description in Chinese
    Type: String
    Default: ''
RamRole: '{{ OOSAssumeRole }}'
Tasks:
  - Name: getInstance
    Description:
      en: Views the ECS instances
      zh-cn: the description in Chinese
    Action: ACS::SelectTargets
    Properties:
      ResourceType: ALIYUN::ECS::Instance
      RegionId: '{{ regionId }}'
      Filters:
        - '{{ targets }}'
    Outputs:
      instanceIds:
        Type: List
        ValueSelector: Instances.Instance[].InstanceId
  - Name: installAegisAgent
    Action: ACS::ECS::InstallAegisAgent
    Description:
      en: Install aegis agent
      zh-cn: the description in Chinese
    Properties:
      regionId: '{{ regionId }}'
      instanceId: '{{ ACS::TaskLoopItem }}'
    Loop:
      RateControl: '{{ rateControl }}'
      Items: '{{ getInstance.instanceIds }}'
Metadata:
  ALIYUN::OOS::Interface:
    ParameterGroups:
      - Parameters:
          - regionId
          - targets
        Label:
          default:
            zh-cn: the description in Chinese
            en: Select Ecs Instances
      - Parameters:
          - rateControl
          - OOSAssumeRole
        Label:
          default:
            zh-cn: the description in Chinese
            en: Control Options