You can remove a cloud account that is connected to IBM
Guardium DSPM, as required. With this feature, you have enhanced
control to manage the monitored data stores. You can remove a cloud account connection to release
Guardium
DSPM analyzer resources that can be put
to use in some other new account.
Before you begin
Note: You can remove the main account of a cloud provider only after you have removed all the other
non-main cloud accounts of the same cloud provider that are connected with Guardium
DSPM.
About this task
If you have multiple cloud accounts that are connected with Guardium
DSPM, you can choose to remove one or more of
those connected cloud accounts and release analyzer resources. Through this feature, you can manage
the analyzer resources in a more controlled and efficient manner.
Note: To remove a connected Slack account, you need to contact IBM Guardium support.
Use the following steps to remove a cloud account connected with Guardium
DSPM:
Procedure
-
Click Cloud Accounts
in the Guardium® Insights SaaS DSPM pane.
- In the Cloud Accounts page, click the three vertical dots in the
last column of the cloud account that you want to remove, and then select
Remove.
The Remove dialog box
opens.
- In the Remove dialog box, remove the local DSPM Analyzer resources
as described in the following choices:
- For AWS non-main cloud accounts, remove the CloudFormation template in the N.
Virginia region to remove the trust between the cloud accounts, and then click
Next.
- For GCP and Microsoft Azure non-main cloud accounts, run the provided script to
remove the trust between the cloud accounts and then click Next.
- For an AWS main cloud account, remove the CloudFormation template of the DSPM
analyzer in each of the installed region and in the N. Virginia region remove the CloudFormation
template that removes the trust between the cloud accounts, and then click
Next.
- For a GCP or Microsoft Azure main cloud account, run the provided script to remove
the DSPM analyzer from the regions and to remove the trust between the cloud accounts, and then
click Next.
- In the Remove dialog box, select Remove
connection, and then type remove in the text box to confirm that you want to remove the
cloud account connection.
Note: If you misspell remove in the text box, you will be prompted to type remove correctly in the
text box before you proceed.
- Click Remove connection in the Remove
dialog box.
If the cloud account connection is removed successfully, you are
notified through a UI message. Else, you are requested to contact IBM Guardium support.
Results
You have successfully removed a cloud account.