TECHNIQUES FOR CREDENTIAL GENERATION

摘要

A plurality of virtual computing resources is detected to have been provisioned. Credentials are distributed to the plurality of virtual computing resources. A credentials map that maps the credentials to the plurality of virtual computing resources is updated. The credentials for the plurality of virtual computing resources are activated to enable the plurality of virtual computing resources to use the credentials to authenticate to a second computer system that manages a resource service, with the credentials being inaccessible to resources of the resource service. A virtual computing resource of the plurality of virtual computing resources is detected to been deprovisioned, and the credentials for the virtual computing resource are deactivated.

主权项

1. A computer-implemented method, comprising:
under the control of one or more computer systems that execute instructions that cause the method to be performed by one or more processors,
distributing credentials to a plurality of virtual machine instances;updating a credentials map that maps the credentials to the plurality of virtual machine instances;activating the credentials for the plurality of virtual machine instances, thereby enabling the plurality of virtual machine instances to use the credentials for authenticating with a computer system that manages a resource service, the computer system separate from the one or more computer systems;determining that a virtual machine instance of the plurality of virtual machine instances has been deprovisioned; anddeactivating one or more of the credentials in the credential map that are mapped to the virtual machine instance.