Installing cloud plugins
Install and manage cloud plugins.
About this task
- Click Install new in the Plugins section. Choose the provider in the dropdown menu.
- The Install cloud plugin page opens. There are two or more sections, each one includes configuration parameters.
- The General section displays.
- Specify the Hosting Portal.
- Specify a value, in minutes, for the Discovery frequency.
- The Provider specific settings section displays. This section is for AWS only and here you must specify the default region.
- The Authentication section displays.
- While installing the plugin, one credential set must be specified. Over time you
can add as many as you need. See the Working with cloud plugins
section. Each credential has a label for easier management, enter a name you can
use to retrieve the credential and simplify the management. The field is named
Account label. Depending on which cloud provider you are using (AWS,
Azure, VMware or GCP), the list of the following required parameters changes.
- If you specified Microsoft Azure as Cloud Provider , you must enter the following information: Tenant ID, Subscription ID, Client ID (Application ID) and Password (Client Secret).
- If you specified vSphere as Cloud Provider, you must enter the following information : vCenter Server, Username, Passoword.
- If you specified GCP you must enter the service account key by uploading the .json file you receive from your GCP cloud administrator.
- If you specified AWS the authentication parameters are: AWS user region, Access key ID, secret access key. To simplify maintenance of the credentials, BigFix allows you to optionally add roles that this credentials can use in order to execute actions in the cloud through the API such as the discovery. By leveraging roles, you can simplify and shorten the list of credentials to be used and configured in the AWS plugin. This is only possible if you have this configuration in place in AWS. In addition, for each role an external ID can be also specified. For more details on the usage of roles and external IDs, refer to the AWS documentation. To add roles and external IDs simply press the Add new button and a table is displayed where you can input the values in the rows. Roles must be specified with their fully qualified name (for example "arn:aws:iam::123456789012:root"). You can add as many as you need.
- The Advanced Settings section displays.
- Microsoft Azure and AWS have an advanced settings section, where you can specify:
- For Microsoft Azure, the Log Path and Log verbose.
- For AWS, in addition to the logging information, you can also specify the proxy settings such as proxy url, proxy username and proxy password.
- Click Install.
- Click Install.