Question 1

How to set up Bastillion EC2 with AWS IAM roles?

Accepted Answer

Configure an IAM role with your Account ID, generate an ARN, and set it in Bastillion-EC2, then import the public SSH key into AWS EC2. The README outlines these steps for instance discovery and access control.

Question 2

Bastillion EC2 vs Apache Guacamole: which is better for web-based SSH?

Accepted Answer

Bastillion EC2 is tailored for AWS with native IAM and tag integration, while Guacamole is more general-purpose and protocol-agnostic. Choose Bastillion for AWS-centric teams needing deep EC2 features, but Guacamole for multi-protocol or cross-cloud support.

Question 3

Can I use Bastillion EC2 for non-AWS servers?

Accepted Answer

No, it's specifically designed for Amazon EC2 instances and relies on AWS integration for features like tag-based access. The README emphasizes AWS environments, making it unsuitable for other infrastructures.

Question 4

What SSH key types does Bastillion EC2 support?

Accepted Answer

It supports RSA, ECDSA, Ed25519 (default), and Ed448 keys, with configurable key generation and passphrase handling. The README details options in the custom SSH key pair section.

Question 5

How to enable audit logging in Bastillion EC2?

Accepted Answer

Uncomment audit-related lines in log4j2.xml and set enableInternalAudit=true in Bastillion-EC2Config.properties. The README notes auditing is disabled by default, requiring manual configuration for compliance.

Question 6

Is Bastillion EC2 secure for production use?

Accepted Answer

Yes, it includes features like two-factor authentication, encrypted sessions, and detailed audit logs, but ensure proper setup of IAM roles and key management. The README highlights security integrations but advises changing default credentials.

Question 7

What happens if Java 21 is not available on my system?

Accepted Answer

Bastillion EC2 won't run, as it mandates Java 21 for Jakarta EE 11 compatibility. The prerequisites section requires OpenJDK or Oracle JDK installation, which could be a blocker in restricted environments.

EC2Box

What is EC2Box?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions