I am having a lot of trouble launching an AWS Ubuntu instance (from a Cloud Formation template) and successfully running a script on startup. This script does run, but I do not want it running as root. I want the script to either be invoked as a different user or when the script runs for the script to change user.

Since we are attempting to use Cloud Formation, I need to put the script or a reference to the script in my Template file. The relevant part of my template file is below. The script ‘myScript.sh’ does run, but always as root.

From the URL: http://alestic.com/2009/06/ec2-user-data-scripts it states that these scripts always run as root. So instead I decided to modify the script to change the user. Below is an example script that does not do what I want. I’ve commented it inline to explain what each stage does:

I’m guessing that there’s something fundamentally wrong with my script, but I just can’t see it! has anyone got any experience with AWS and Cloud Formation and have you succeeded in running a script not as root? I really don’t want the script running as root since the activities that are going to be started should not be owned at the root level.

Thanks,
Phil

su doesn’t change the user for the remainder of the script, it starts a new interactive shell for the user you specify. In a non-interactive context like your script here, that shell exits immediately because there is nothing for it to do.

See this question for some suggestions on how to change user for a series of commands. Alternatively for individual commands you can do sudo -u ubuntu [...].