Table of contents

Set up your AWS account

To work with govuk-aws and govuk-aws-data, you will require an account in AWS.

1. Request a GDS AWS account

GDS maintains a central account for AWS access. You will need to request an account from the Technology and Operations team.

👉 Request an account

2. Sign in to AWS

To sign in, go to the GDS AWS Sign page, and use the following credentials:

  • “Account ID or alias”: gds-users
  • Username: your @digital.cabinet-office.gov.uk email address
  • Password: your password

👉 Sign in to AWS GDS account

3. Set up your MFA

You have to set up Multi-Factor Authentication (MFA).

4. Get the appropriate access

An account in AWS doesn’t give you access to anything, you’ll need to be given rights.

Add yourself to a lists of users found in the data for the infra-security project. There are 3 groups:

  • govuk-administrators: people in Reliability Engineering who are working on GOV.UK infrastructure, Architects and Lead Developers of GOV.UK and anyone else working on the AWS migration
  • govuk-powerusers: anyone else who can have production access on GOV.UK
  • govuk-users: anyone else who needs integration access on GOV.UK

The identifier you need to add is called the “User ARN”. You can find this by going to the users page in AWS IAM and selecting your profile.

arn:aws:iam::<account-id>:user/<firstname.lastname>@digital.cabinet-office.gov.uk

After your PR has been merged, someone from the govuk-administrators group needs to deploy the infra-security project.

👉 Deploy AWS infrastructure with Terraform

5. Do your thing 🚀

You can now:

👉 Access the AWS console

👉 Use AWS on the command line

This page was last reviewed . It needs to be reviewed again by the page owner #govuk-2ndline.