CF template for additional account / region starts reciprocal scan #73
Comments
|
Ah yes, the template is creating an aggregator in the second account but it doesn't actually need to do that does it? |
|
Closing as fixed in v1.1.0 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
After running the supplied template to add a new account and region choice, reciprocal scanning started which was not expected
To Reproduce
Instantiate main perspective CF stack in Account A; region eu-west-2
Set up Cognito user and log into UI
Follow Account Management dialog to add a new account (Account B) region eu-west-2
Download cloud formation template
Apply template to get new 'listener authority' CF stack in Account B
Expected behaviour
Account A AWS Config is allowed to scan region in Account B, this shows in list of resources in Aggregator in AWS Config
Account B AWS Config shows authorisation it is granting to Account A
Actual behaviour
Account A AWS Config is allowed to scan region in Account B, this shows in list of resources in Aggregator in AWS Config
Account B AWS Config shows authorisation it is granting to Account A
Plus!...
Account B AWS Config aggregator is recording resources owned by Account A and shows a list of resources
The text was updated successfully, but these errors were encountered: