Architecture - Chef Automate on AWS


Deploying this Quick Start with the default parameters builds the following Chef Automate environment in the AWS Cloud.

        Quick Start architecture for Chef Automate on AWS

Figure 1: Quick Start architecture for Chef Automate on AWS


The resources deployed by this Quick Start and shown in Figure 1 are used as follows:

  • A VPC is created in the region you choose when you launch the stack. A single public Amazon VPC subnet is created in the first Availability Zone.

  • Chef Automate is deployed into the VPC subnet. An Elastic IP address is allocated and associated with the instance. During instance launch, Chef Automate is bootstrapped and the marketplace-setup command is run to configure the server. You provide the values required by marketplace-setup via AWS CloudFormation parameters at the time you launch the stack.

  • A Chef workstation running on Microsoft Windows Server is deployed into the VPC subnet. This server has a public IP assigned and is accessible via Remote Desktop Protocol (RDP) over the internet. Both Git and the Chef Development Kit (Chef DK) are automatically installed on this machine via the AWS CloudFormation bootstrapping process. This Chef workstation is optional. You can use a workstation in your own on-premises environment as an alternative. This Quick Start uses Windows Server for the Chef workstation, because Windows provides a graphical user interface to the Chef Client tools and web-based Management Console, but you are free to use any supported operating system for your own Chef workstation.

  • One Ubuntu Server node is deployed into the VPC subnet. After you deploy Chef on AWS, you can follow the walkthrough in this guide to configure a local Git repository (chef-repo) on the workstation, create and upload a cookbook to Chef Automate, and then bootstrap the node and run the cookbook to configure a basic web server. As with the Chef workstation, this node is optional. With Chef Automate running on AWS, you can manage other nodes that you deploy on AWS or nodes that are located in your on-premises data center.

AWS Services

The core AWS components used by this Quick Start include the following AWS services. (If you are new to AWS, see the Getting Started Resource Center.)

  • Amazon VPC – The Amazon Virtual Private Cloud (Amazon VPC) service lets you provision a private, isolated section of the AWS Cloud where you can launch AWS services and other resources in a virtual network that you define. You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways.

  • Amazon EC2 – The Amazon Elastic Compute Cloud (Amazon EC2) service enables you to launch virtual machine instances with a variety of operating systems. You can choose from existing Amazon Machine Images (AMIs) or import your own virtual machine images.

  • AWS Marketplace – AWS Marketplace is an online store where you can sell or buy software that runs on AWS. AWS Marketplace complements programs like Amazon DevPay and the AWS Partner Network (APN).