Step 1: Install Root Stack

The following is a step by step guide to installing the InfinStor service in your own AWS account.

InfinStor root stack

  • In your AWS Console, go to CloudFormation and choose create stack
  • Use Amazon S3 URL for template source. The URL is:
https://s3.amazonaws.com/infinstorcft/2.2.10/infinstor.yaml

Here is a detailed explanation of the parameters:

Options

General Options

  • InfinStor Domain: Specify the domain, e.g. isstage8.com, ml.isstage1.com, etc.
  • mlflowDnsName: This options is used to change the mlflow REST endpoint name. The default is mlflow. For example, if ml.isstage1.com is the domain where InfinStor is being installed, then mlflow.ml.isstage1.com is the MLflow server REST endpoint and the MLFLOW_TRACKING_URI environment variable must be set to infinstor://mlflow.ml.isstage1.com/. Use this option if the hostname mlflow is already used in your domain
  • mlflowuiDnsName: This options is used to change the mlflow UI endpoint name. The default is mlflowui. For example, if ml.isstage1.com is the domain where InfinStor is being installed, then the mlflow UI is available at https://mlflowui.ml.isstage1.com/
  • mlflowstaticDnsName: This options is used to change the mlflowstatic endpoint name. The default is mlflowstatic
  • apiDnsName: This options is used to change the dashboard REST API endpoint name. The default is api
  • serviceDnsName: This options is used to change the dashboard UI endpoint name. The default is service
  • serviceDnsName: This options is used to change the dashboard UI endpoint name. The default is service
  • IsExternalAuth: Specify whether this instance will federate authentication to an external auth system such as Azure Active Directory or Google Oauth. Note that InfinStor uses cognito as the core authentication service. Cognito can be configured to federate authentication to many services.

Certificate Creation Options

  • CreateCertificates: true or false. This parameter determines whether the InfinStor CFT will create certifictes. If you set this to false, you must have a wildcard certificate ready and provide it in the next parameter
  • Enter the ARN of a pre-existing wildcard certificate: In this text box, you must specify the ARN of the certificate to use if the CreateCertificates parameter was set to false. If CreateCertificates is true this can be blank

DNS Entry Creation Options

  • CreateDnsEntries: true or false. If you want InfinStor CFTs to create the required DNS entries, set this to true
  • Route53HostedZoneId: Zone ID in Route 53 for the (sub)domain where InfinStor is to be installed. If CreateDnsEntries is false, this parameter can be blank

Permissions Boundary Options

  • UseBoundaryPolicy: true or false. If your corporate policy requires you to set a boundary policy, set this to true and enter the boundary policy ARN in the BoundaryPolicyARN item below
  • BoundaryPolicyARN: If the above configuration item UseBoundaryPolicy is set to true, then this config item is required and must have the ARN of the boundary policy to use

Be sure to tick the 'IAM Resources with Custom Names' and 'CAPABILITY_AUTO_EXPAND' checkboxes while clicking through the Stack Options page.