About outbound setting of MID Server used in Cloud discovery

Shuichi Satomi
Tera Contributor

I am discovering AWS with Cloud Discovery.
The MID server is also on AWS and built on EC2
At this time, the AWS security group (outbound) is set on the MID server, but the following problem has occurred.
There is also a method that does not set a security group, but it cannot be adopted for security reasons.
I would like to know the best practices, please let me know if there is a way you guys are doing it.

・URL cannot be specified for outbound
・IP needs to be reconfigured when DNS changes
・There is a possibility that the IP of the URL will change for each AWS region, and it is not possible to determine a unique IP

1 REPLY 1

Niks1
Tera Contributor

Hi Shuichi,

As per my knowledge, if its possible to ask your AWS team to provide you with the Management account details along with the creating a Org assume role and IAM profile in AWS to help discovering/populating all child accounts, and run discovery to child accounts without the need of configuring credentials one by one.

The below article might help :
https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0832866

Hit like and assign stars if this response help your query.

Regards,

Nikhil (Niks)