AWS tags

Document ID : KB000012282
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

This document explains what AWS tags can be fetched by CA PAM.

For example:
{AWS tag} ==> {AWS tag Value} ==> {CA PAM Action based on AWS tag Value}

Question:

What AWS tags do we have in connection with CA PAM?

Answer:

We have two AWS tags we can utilize for AWS instances.

1. XsuiteIgnore

PAM will not import intances with tag of "xsuiteignore"

<how to>

on AWS side, add tag on the instance

Key = XsuiteIgnore

 

2. XsuiteGroups

You can use AWS tag "XsuiteGroups" with PAM device group on value to make it easier for you to create policies for the devices you may specifically use.

<How to>

on PAM side
Device group -> AWS in "group type" and enter group name to create AWS device group

on AWS side
Add tag -> Xsuitegroups in key and AWS device group in value

 

Additional Information:

Using AWS Tags