Skip to content

PCI-DSS Compliant architecture for AWS

Notifications You must be signed in to change notification settings

RedCarpetUp/tf-pci-dss

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Summary

This repo will create a PCI-DSS environment, with the following modules:

  • productionvpc
  • managementvpc
  • iam_password
  • iam
  • centralized_logging
  • database
  • application

2. Basic Architecture

Design

Built with:

Step by Step deployment

  • Step 1: Clone the Repo. This command will clone the repo and will change directory the recently cloned repo
$ git clone https://github.com/antonio-rufo/tf-sandys.git
  • Step 2: Create a S3 bucket for remote state storage. Update the terraform.tfvars file with your account ID and region
$ cd tf-sandys
$ cd statebucket
$ vi terraform.tfvars

Create the resources:

$ terraform init
$ terraform plan
$ terraform apply --auto-approve

Take note of the output for state_bucket_id. You'll need to update the main.tf on each layer with it. It is not yet possible to have the state bucket values interpolated.

  • Step 3: Create your PCI DSS environment. Update the terraform.tfvars file with your account ID, region, and fill up all required variables. Then update main.tf with the state_bucket_id created in step 2 (line 13) as well as the region (line 15).
$ cd ../environment
$ vi terraform.tfvars
$ vi main.tf

Create the resources:

$ terraform init
$ terraform plan
$ terraform apply --auto-approve

About

PCI-DSS Compliant architecture for AWS

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages