HA configuration in the AWS

cancel
Showing results for 
Search instead for 
Did you mean: 

HA configuration in the AWS

L3 Networker

Folks,

some what confused on how to start with this. I went through all the documentation which talks about an IAM policiy and definining roles ubt am not able to get where to configure this.

 

My requirement is to have a firewall with an untrust/trust interface and a management interface. I believe I will need an additional HA interfaces as well.

 

 

The below link mentions about the policiy:

https://www.paloaltonetworks.com/documentation/80/virtualization/virtualization/set-up-the-vm-series...

 

Do I write the policy manually? And then attach this when I create the instances?

 

 

Thanks!!

N.

1 ACCEPTED SOLUTION

Accepted Solutions

L5 Sessionator

We should outline that in the documentation but answer is yes and no.

1. You do have to create the policy yourself

2. But it should be attached to your AWS useraccount/role/usergroup. So no you don't attach it to an instance you attached to an identity. 

 

 there is a hyperlink in the IAM Roles for HA that provides all of that info.  https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage.html#create-managed-policy-c...

 

 

View solution in original post

1 REPLY 1

L5 Sessionator

We should outline that in the documentation but answer is yes and no.

1. You do have to create the policy yourself

2. But it should be attached to your AWS useraccount/role/usergroup. So no you don't attach it to an instance you attached to an identity. 

 

 there is a hyperlink in the IAM Roles for HA that provides all of that info.  https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage.html#create-managed-policy-c...

 

 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!