https://ferkakta.dev/tags/workspaces/Recent content in Workspaces on ferkakta.devHugoen-USCopyright fizz.Thu, 12 Feb 2026 10:00:00 -0600https://ferkakta.dev/workspaces-ssm-cloudwatch-bootstrap/Thu, 12 Feb 2026 10:00:00 -0600https://ferkakta.dev/workspaces-ssm-cloudwatch-bootstrap/<p>I spent an afternoon arguing with Windows about whether I was allowed to be root on a machine I created. Six hours and six layers of undocumented workarounds later, I got CMMC-compliant audit logging on a desktop that doesn&rsquo;t know it exists.</p> <h2 id="the-problem">The problem</h2> <p>WorkSpaces don&rsquo;t show up in AWS Systems Manager. They&rsquo;re not EC2 instances — no instance profile, no metadata endpoint, no identity. SSM Agent is pre-installed but thinks it&rsquo;s nobody. CloudWatch Agent has no credentials and doesn&rsquo;t know what region it&rsquo;s in.</p>https://ferkakta.dev/simplead-ldap-user-creation-terraform/Thu, 12 Feb 2026 09:00:00 -0600https://ferkakta.dev/simplead-ldap-user-creation-terraform/<p>If you&rsquo;ve tried to fully automate Amazon WorkSpaces provisioning with Terraform, you&rsquo;ve hit the wall: SimpleAD has no AWS API for creating directory users.</p> <h2 id="what-every-guide-tells-you">What every guide tells you</h2> <ul> <li>Enable WorkDocs in the console, then use the WorkDocs API to create users</li> <li>Launch a domain-joined EC2 instance with RSAT tools and create users manually</li> <li>RDP into a Windows management machine and use the AD admin console</li> </ul> <p>All of these break the Terraform workflow. Everything is automated except the one step that creates the user your WorkSpace actually needs.</p>