- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Vdiscovery in AWS Multi Account Environment
[ Edited ]- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-05-2021 06:12 AM - edited 11-05-2021 06:14 AM
I have Installed Infoblox Vnios in our AWS infrastructure with the purpose of having an easy solution for IPAM in the cloud. (No DNS or DHCP needed.) When Configuring Vdiscovery Job is works as expected and Infoblox Discovers the VPC CIDR range, all subnets and all Instances of that individual account.
1 - Our current question is, for an AWS Organizations environment with hundreds of accounts like ours, do we have to configure individual Vdiscovery jobs pointing to every individual account? Or is there a better way to achieve a single Vdiscovery job that will collect information about multiple accounts?
We have tried configuring a Vdiscovery job agaisnt an account that has permissions to see EC2 information on all other accounts, but that did not help.
2 - Also not sure this will be relevant but the option to use Instance profile for Credentials of the Vdiscovery job is greyed out (can't select it), even tho the EC2 instace has a IAM Role attached as per the instructions. - Deployment Guide: Deploy Infoblox vNIOS Instances for AWS - Draft
Solved! Go to Solution.
Re: Vdiscovery in AWS Multi Account Environment
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-05-2021 08:07 AM
For question 1, for now setting up a vDiscovery job for each account is the only way to collect data accross all of them.
On question 2, did you add the IAM role after deploying the instance or during deployment? I have seen it fail to recognize there is a role assigned if added after deployment, not sure on a workaround for this. You may need to open a support case to investigate.
Re: Vdiscovery in AWS Multi Account Environment
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-05-2021 10:39 AM
Thanks for the answer, it's a shame about issue 1)
For issue 2) we will try to see if adding role during deployment will have an impact, thanks for the info
Re: Vdiscovery in AWS Multi Account Environment
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-31-2023 09:30 PM
Any update since 2021?
Can it discovery multiple accounts now?
Re: Vdiscovery in AWS Multi Account Environment
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-19-2024 04:16 AM
Hello, I have the same problem. We have our Infoblox IPAM in our On-Premise CPD, and we want to discover with vDiscovery the networks, vpc, ec2 instances, but we have multiple accounts in AWS. Still not eligible for an AWS role from vDiscovery?
Today, what solution exists for our case of having multiple accounts in AWS?
Do we have to configure a vDiscovery for each AWS account?