New AWS Account Step-by-Step Guide✔️

Let's take some action...

2025 Version 📅

We’ve gotten pretty “Techy” recently, explaining:

- SQL Injection: Made Simple 💉
- AWS Attack Made Simple: whoAMI 💀
- Weekend Project: DevSecOps Intro🛠️

Let’s roll it back for beginners - As far as i’m aware a lot of you are really just interested in the Cloud and maybe haven’t actually ever interacted with it.

Here’s a good high level overview of what we will do today:

Let’s fix that right now.

This week, take 30 mins and follow the steps here to set yourself up with a Free AWS Account - Following a simple 6 step new account checklist.

And for those looking for a more technical project - Next week I’m going to be sharing a chapter from TechOneTwenty on how you can set up Ansible to rapidly deploy multiple users into your new Cloud instances.

---

Start here 👉

Note: I’ve made a new account so we can go through this together.

Step 1: Sign Up for AWS

Getting started with AWS begins with creating your account:

1. Visit the AWS homepage (aws.amazon.com) and click on "Create an AWS Account"

2. Enter your email address and create an account name

3. Follow the prompts to provide your contact information

4. Enter payment information (even though you're using the free tier, AWS requires a payment method on file)

5. Complete identity verification via phone

6. Select a support plan (the free Basic Support is sufficient for beginners)

Remember that AWS offers a generous free tier that includes many services at no cost for 12 months. This is perfect for learning and experimentation.

Step 2: Secure Your Root Account

The root account has unrestricted access to all AWS services and resources, making it crucial to protect:

1. After creating your account, sign in as the root user (with the email and password you registered with)

2. Navigate to the IAM dashboard (find it in the AWS Management Console under "Services")

3. Look for the security status checklist and click on "Activate MFA on your root account"

4. Select "Virtual MFA device"

5. Install an authenticator app on your smartphone (such as Google Authenticator, Authy, or Microsoft Authenticator)

6. Scan the QR code displayed in AWS using your authenticator app

7. Enter two consecutive MFA codes from your app to verify setup

This multi-factor authentication adds an essential second layer of security to your account.

Step 3: Create an IAM User

Best practice is to use your root account only for specific administrative tasks and create an IAM user for everyday work:

1. In the IAM dashboard, select "Users" then "Create users"

2. Select “Provide user access to the AWS Management Console”

3. Create a username and select "Password - AWS Management Console access"

4. Set a strong password and decide whether to require a password reset

5. On the permissions page, select "Add user to group"

6. Create a new group called "Administrators"

7. Search for and attach the "AdministratorAccess" policy

8. Review and create the user

9. Note the sign-in URL provided (bookmark this for future logins)

10. It’s good practice to create a Role here but that’s for another time.

Now you have a separate administrative user that you should use for most of your AWS activities.

Step 4: Enable Billing Alarms

AWS costs can accumulate quickly if not monitored, so setting up billing alerts is essential:

1. Navigate to the Billing dashboard

2. Under "Preferences," enable "CloudWatch billing alerts"

3. Navigate to the CloudWatch service

4. Select "Alarms" and then "Create alarm"

5. Choose "Select metric" and then find "Billing" > "Total Estimated Charge"

6. Select your preferred currency and click "Select metric"

7. Set a threshold amount ($10 or whatever you like tbh) and configure the alarm to trigger when charges exceed this amount

8. Create an SNS topic and add your email address

9. Name your alarm ("BillingAlert") and create it

10. Confirm the subscription in the email you receive

This setup ensures you'll be notified before costs grow beyond your expectations - Trust me…please do this.

Step 5: Create SSH Keys

While AWS offers multiple ways to connect to instances, understanding SSH key pairs is fundamental:

1. Navigate to the EC2 dashboard

2. In the left navigation pane, under "Network & Security," select "Key Pairs"

3. Click "Create key pair"

4. Enter a descriptive name for your key pair

5. Leave the default key pair type (RSA) and format (.pem for macOS/Linux, .ppk for Windows users with PuTTY)

6. Click "Create key pair"

7. The private key file will automatically download to your computer

8. Store this file securely (anyone with this file can access your instances)

9. On macOS/Linux, change permissions with: chmod 400 your-key-file.pem

In my opinion AWS Session Manager provides a more modern and secure connection method, understanding SSH is still valuable knowledge for cloud starters.

Step 6: Launch Your First Instance

Creating your first EC2 instance is an exciting milestone:

1. Navigate to the EC2 dashboard and click "Launch instance"

2. Name your instance ("CyberNotes-Instance")

3. Select an Amazon Machine Image (AMI) - Amazon Linux 2 is a good starting point for beginners

4. Choose an instance type (t2.micro is included in the free tier)

5. Select the key pair you created earlier

6. Configure the security group to allow SSH access (port 22) from your IP address

7. Review and launch the instance

8. Wait for the instance to initialize (check the "Instance state" column)

9. Once running, select the instance and click "Connect" for connection instructions

Congratulations! 🎉 You now have a running virtual server in the AWS cloud.

Step 7: Install the AWS CLI

The AWS Command Line Interface gives you powerful control over AWS services from your terminal:

1. Download and install the AWS CLI:

   • Windows: Download and run the installer from the AWS website

   • macOS: Use brew install awscli with Homebrew or download the installer

   • Linux: Use your package manager (sudo apt install awscli) or download the installer

2. Open your terminal or command prompt and verify installation with:
   aws --version

3. Configure the CLI with your credentials:
   aws configure

4. When prompted, enter:

   • Your IAM user's access key ID and secret access key (create these in the IAM console if needed)

   • Your default region (for me it’s eu-west-2)

   • Your preferred output format (json is recommended)

5. Test the configuration by running a simple command:
   aws s3 ls

This setup allows you to manage AWS resources through scripts and automation, which will be especially useful for next week's Ansible automation content.

Next Steps

You now have a functioning AWS account with proper security measures, you’re ready for next week's more advanced content on using Ansible for automated user deployment.

---

Thank you for reading: Keep it secure, keep it light-hearted!

WJPearce - CyberBrew

Comments

[ExoArtDataPulse]

Uncanny! I was reading about Amazon's Ocelot Quantum Computing chip at the weekend. Unlike Microsoft's recent attempt to steal the headlines by preemptively announcing theirs,the Majorana1, Amazon have published their scientific findings and architecture notes in the well respected Nature Magazine. Way to go, whereas Microsoft would have us just take their word for it. Anyhow. All this lead me to thinking I probably should get a free AWS account for CS research and related Quantum interests and here we are!. That's today's project sorted! Great stuff. Thanks for the steer. I'm on it :-)