Removing a connected cloud account

You can remove a cloud account that is connected to IBM Guardium DSPM, as required. With this feature, you have enhanced control to manage the monitored data stores. You can remove a cloud account connection to release Guardium DSPM analyzer resources that can be put to use in some other new account.

Before you begin

Note: You can remove the main account of a cloud provider only after you have removed all the other non-main cloud accounts of the same cloud provider that are connected with Guardium DSPM.

About this task

If you have multiple cloud accounts that are connected with Guardium DSPM, you can choose to remove one or more of those connected cloud accounts and release analyzer resources. Through this feature, you can manage the analyzer resources in a more controlled and efficient manner.

Note: To remove a connected Slack account, you need to contact IBM Guardium support.

Use the following steps to remove a cloud account connected with Guardium DSPM:

Procedure

  1. Click Cloud Accounts cloud_accounts_icon in the Guardium® Insights SaaS DSPM pane.
  2. In the Cloud Accounts page, click the three vertical dots in the last column of the cloud account that you want to remove, and then select Remove.
    The Remove dialog box opens.
  3. In the Remove dialog box, remove the local DSPM Analyzer resources as described in the following choices:
    • For AWS non-main cloud accounts, remove the CloudFormation template in the N. Virginia region to remove the trust between the cloud accounts, and then click Next.
    • For GCP and Microsoft Azure non-main cloud accounts, run the provided script to remove the trust between the cloud accounts and then click Next.
    • For an AWS main cloud account, remove the CloudFormation template of the DSPM analyzer in each of the installed region and in the N. Virginia region remove the CloudFormation template that removes the trust between the cloud accounts, and then click Next.
    • For a GCP or Microsoft Azure main cloud account, run the provided script to remove the DSPM analyzer from the regions and to remove the trust between the cloud accounts, and then click Next.
  4. In the Remove dialog box, select Remove connection, and then type remove in the text box to confirm that you want to remove the cloud account connection.
    Note: If you misspell remove in the text box, you will be prompted to type remove correctly in the text box before you proceed.
  5. Click Remove connection in the Remove dialog box.
    If the cloud account connection is removed successfully, you are notified through a UI message. Else, you are requested to contact IBM Guardium support.

Results

You have successfully removed a cloud account.