If you don't need to run discovery or visibility on an AWS system anymore, you can purge it to remove the files, data, and other resources that CDV uses to run visibility. When purging an AWS visibility system, you must specify credentials for CDV to use and can limit the purge operation to specific regions.
On AWS systems, purging deletes all SNS, SQS, and CloudWatch resources that CDV uses to set up visibility on an infrastructure. You can limit the purge operation to specific regions.
For more information on how purging works and how to purge a visibility system, see Purging visibility systems. The settings below apply only when purging an AWS visibility system.
Purging Visibility System settings
The Purging Visibility System section of the AWS Settings page has the following settings.
Basic AWS parameters options
| Field/Option | Description |
|---|---|
| AWS Access Key ID | The ID of the Access Key for the IAM account that CDV should use when purging the AWS infrastructure. |
| AWS Secret Access Key |
The Secret Access Key for the IAM account indicated in AWS Access Key ID. |
Advanced AWS parameters options
| Field/Option | Description |
|---|---|
| Enable AWS Role Assumption |
If selected, AWS role assumption will be enabled. This lets CDV use a temporary set of security credentials to access AWS resources to which it normally doesn't have access. |
| AWS Role ARN |
(Available only if Enable AWS Role Assumption is selected.) The Amazon Resource Name (ARN) for the role that CDV is to assume, using AWS role assumption. The AWS role ARN must be in the following format: For
example:
|
| AWS Regions | The regions that you want to purge. To purge all regions, select the checkbox for All Regions. To purge specific regions, select the checkboxes for all regions that you want to purge. |