Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 11 Next »

Overview

Before you begin

  • Ensure you have the permission to:

    • To create an SNS Topic and,

    • Configure an AWS Config of the region for which, you want to monitor the real-time state change

  • To know more about SNS refer to your Amazon Web Services documentation.

You’ll need to set up an AWS SNS Topic to enable the HyperCloudTM Platform (HCP) to collect configuration change and budget trigger data. You can configure SNS topics for your AWS resources in two ways:

  • Create a new SNS Topic

  • Modify an existing SNS Topic

Create a new SNS Topic  

Note
To retrieve the HyperGrid SQS from the HyperCloud™ Platform:

  1. Login to your HCP portal account.

  2. Navigate to System Settings > config.stream.sqs.arn.
    Example: arn:aws:sqs:us-east-2:<<HyperGridAccountID>>:config-queue

  3. Copy the HyperGrid SQS.

Mail us at support@hypergrid.com if you do not see this information under your System Settings.

Follow these steps to create a new SNS Topic:

  1. Sign in to your AWS Management Console.

  2. Open your Amazon SNS console.

  3. Create a new SNS Topic with the following name: hypergrid-config-topic.

  4. From the SNS Topic wizard, configure these settings under Access Policy:

    1. From the Define who can publish messages to the topic field – select Only the topic owner.

    2. From the Define who can subscribe to the topic field – select Only requesters with certain endpoints.

      • Enter the endpoint ARN of your HyperGrid SQS.

  5. The HyperGrid SRE subscribes HyperGrid SQS to the newly created SNS Topic.

Modify an existing SNS Topic

This topic describes the steps to modify the access policy of an existing SNS topic so HyperGrid SQS can subscribe to the SNS Topic. Use the following JSON policy to allow HyperGrid SQS to subscribe to the SNS topic.
Note: This will be an ARN for the config-queue created on the HyperGrid AWS account and is also configured in the *HyperCloud™ Portal  System Settings * config.stream.sqs.arn for example: arn:aws:sqs:us-east-2:<<HyperGridAccountID>>:config-queue. Contact support@hypergrid.com in case this information is not available.

  1. From the *AWS console  SNS*  select the SNS Topic and click Edit

  2. Under the Access policy  Add the following JSON to permit HyperGrid SQS to subscribe to SNS topic.


    {
    "Sid": "__console_sub_0",
    "Effect": "Allow",
    "Principal": {
    "AWS": "*"
    },
    "Action": [
    "SNS:Subscribe",
    "SNS:Receive"
    ],
    "Resource": "arn:aws:sns:us-east-1:<<CustomerAccountID>>:Customer-Config-Topic",
    "Condition": {
    "StringLike": {
    "SNS:Endpoint": "arn:aws:sqs:us-west-2:<<HyperGridAccountID>>:HyperGrid-Config-Queue"
    }
    }
    }

  3. Notify the HyperGrid Support team to subscribe the HyperGrid SQS to the SNS topic created for AWS Config stream.

  4. Return to AWS config and ensure that the AWS config settings are configured to send notifications to this SNS topic config-topic

  • No labels

© 2020 CloudSphere