You should be able to switch the AWS_ACCESS_KEY_ID while the cluster is
running, as the job system doesn't know anything about the AWS key.
I quickly looked at the code in StarCluster (the _add_tags_to_sg()
function), and starcluster does not store the AWS settings as part of the
tag to identify the cluster. So starcluster should not care about the IAM
user who started the cluster.
However, the safest way is to create a new key, or create a new IAM user
that has EC2 permission, and use it to run starcluster commands like
sshmaster. If it works you can safely delete the key you uploaded to the
outside world.
Rayson
==================================================
Open Grid Scheduler - The Official Open Source Grid Engine
http://gridscheduler.sourceforge.net/
http://gridscheduler.sourceforge.net/GridEngine/GridEngineCloud.html
On Fri, Sep 12, 2014 at 11:44 AM, MacMullan, Hugh <hughmac_at_wharton.upenn.edu
> wrote:
> You should be able to just replace the keys and put the new keys in your
> starcluster config with no ill effects, since they're just used to access
> the API.
>
>
>
> -Hugh
>
>
>
>
>
> *From:* starcluster-bounces_at_mit.edu [mailto:starcluster-bounces_at_mit.edu] *On
> Behalf Of *Damian Kao
> *Sent:* Friday, September 12, 2014 11:36 AM
> *To:* starcluster_at_mit.edu
> *Subject:* [StarCluster] read-only access key
>
>
>
> I stupidly pushed my starcluster config file to github with my access keys
> after I started my cluster and jobs. If I change the access key's
> permission to read-only, will that affect the currently running cluster?
>
>
>
> The cluster is already up and running and my job is also going along fine.
> Can I change the key access to read-only while it is running and then
> change it back to full permissions to terminate the cluster after the jobs
> are done?
>
>
>
> --
>
> ________________________________
> Damian Kao
> website: www.nextgenetics.net
>
> _______________________________________________
> StarCluster mailing list
> StarCluster_at_mit.edu
> http://mailman.mit.edu/mailman/listinfo/starcluster
>
>
Received on Fri Sep 12 2014 - 13:25:25 EDT
This archive was generated by
hypermail 2.3.0.