AWS External ID change

AWS External ID change

AWS External ID Change

An External ID in AWS is a unique identifier used in cross-account access scenarios to ensure that a request from one account to another is intended. Here's an elaboration on the process and considerations for managing AWS External IDs:

  1. Unchangeable External ID:

    • Once set, the External ID cannot be changed or updated directly from CoreStack or any other management tool.
    • It's crucial to select an External ID that will remain constant throughout the use case to avoid any disruptions in the cross-account access.

  2. Usage in CoreStack:

    • During the pre-onboarding CloudFormation (CFN) setup, an External ID is specified to establish trust between AWS accounts.
    • The same External ID provided during the CFN setup must be used consistently in CoreStack during the onboarding process to ensure continued access and security.

    • Related Articles

    • AWS EC2 Cost Report not showing data.

      Scenario: When accessing the AWS EC2 Cost report, users may encounter situations where the report appears empty, despite the presence of EC2 instances in the Cloud. In some cases, users may encounter issues with AWS EC2 cost reports, specifically ...

    • Purchased RI Unavailable in Optimize Rate page

      What to do if your purchased reservations in the cloud platform are not available in the optimize rate page in CoreStack: 1. Check the Cloud Provider and Currency: Ensure the correct cloud provider and currency are selected in the UI. The page ...

    • AWS EC2 Instance Tag Restrictions

      When creating an EC2 instance in AWS, the instance name is set as the value of the Name tag. The tag key (Name) and tag value must follow certain conventions. The following basic restrictions apply to tags:Maximum number of tags per resource – 50 For ...

    • What to do when cost data is not available for a particular month for an AWS Account

      Scenario : Cost data is not available for a particular month for an AWS Account. Solution : We need to check whether the billing file for that particular month is available in the S3 bucket. This step is crucial because if the billing file is not ...

    • Required Permissions for GCP SQL and BigQuery Resource Tagging Governance

      Required Permissions for GCP SQL and BigQuery Resource Tagging Governance SQL Resources: To enable tagging for SQL resources in Google Cloud Platform (GCP), such as Cloud SQL instances, the following permissions and configurations are required: Cloud ...