Rediscovery of cloud resources - Adaptive Applications - BlueCat Gateway - 21.3.1

Cloud Discovery & Visibility Administration Guide

Locale
English (United States)
Product name
BlueCat Gateway
Version
21.3.1

Cloud Discovery & Visibility v21.2 and greater introduces the ability to update, delete, and import new cloud resources based on previously run discovery tasks if you do not have the ability to run visibility tasks on your cloud infrastructure. You can perform a rediscovery of resources by running discovery on the same configuration with the Override Configurations option enabled. When the rediscovery is performed, new and updated cloud resources from the previously run discovery tasks are added to Address Manager. You can also perform a rediscovery of resources with the Remove Deleted Resources option enabled to delete any resources that currently exist in Address Manager that have been removed from the AWS, Azure, and GCP environment since the previous discovery task.

When performing a rediscovery, resources in Address Manager are updated based on the following changes:

AWS
  • VPC/Subnets
    • Creating a new VPC/Subnet
    • Updating a CIDR of a VPC/Subnet
    • Deleting a VPC/Subnet
  • EC2 instances
    • Creating a new EC2 instance
    • Updating an EC2 instance state
    • Deleting an EC2 instance
  • Load balancers
    • Creating a new load balancer
    • Deleting a load balancer
  • Route 53
    • Creating a new hosted zone
    • Creating a new record
    • Deleting a hosted zone
    • Deleting a record
  • VPC Endpoints
    • Creating a new VPC endpoint
    • Deleting a VPC endpoint
    • Updating a CIDR (IPv4) for a VPC endpoint
    • Updating a security group for a VPC endpoint
    Attention:
    • Selective Deployment of changes is not supported for rediscovery.
    • If the name or value of a Route 53 resource record is changed, the resource record is deleted and reimported into Address Manager as a new resource record upon rediscovery.
Azure
  • Virtual Network/Subnets
    • Creating a new Virtual Network/Subnet
    • Updating a CIDR of a Virtual Network/Subnet
    • Deleting a Virtual Network/Subnet
  • Virtual Machines
    • Creating a new virtual machine
    • Updating a virtual machine state
    • Deleting a virtual machine
  • Load balancers
    • Creating a new load balancer
    • Deleting a load balancer
  • DNS records
    • Creating a new Public or Private
    • Creating a new record
    • Deleting a zone
    • Deleting a record
  • Private Endpoint
    • A new private endpoint has been created.
    • An existing private endpoint has been deleted.
    Attention:
    • Selective Deployment of changes is not supported for rediscovery.
    • If the name or value of a Public or Private DNS Zone record is changed, the record is deleted and reimported into Address Manager as a new record upon rediscovery.
GCP
  • VPC/Subnets
    • Creating a new VPC/Subnet
    • Updating a CIDR of a VPC/Subnet
    • Deleting a VPC/Subnet
  • Virtual Machines
    • Creating a new virtual machine
    • Updating a virtual machine state
    • Deleting a virtual machine
  • Load balancers
    • Creating a new load balancer
    • Deleting a load balancer
  • DNS Records
    • Creating a new zone
    • Creating a new record
    • Deleting a zone
    • Deleting a record
  • Private Endpoint:
    • Creating a new Private Endpoint
    • Deleting an existing Private Endpoint
    Attention:
    • Selective Deployment of changes is not supported for rediscovery.
    • If the name or value of a Cloud DNS record is changed, the record is deleted and reimported into Address Manager as a new record upon rediscovery.

Configuring Rediscovery

  1. Within the AWS Credentials, Azure Credentials, and GCP Credentials sections, enter the AWS, Azure, and GCP credentials that were previously used to authenticate for the discovery task.
  2. For AWS configurations, within the Configuration Options section, enter the AWS REGION and BLUECAT CONFIGURATION that were previously used to perform the discovery task, and select the Override Configurations checkbox.
    Attention: The AWS REGION and BLUECAT CONFIGURATION field must contain the same values as what was used for the previously performed discovery task.

    For Azure and GCP configurations, within the Configuration Options section, enter the BLUECAT CONFIGURATION that was previously used to perform the discovery task, and select the Override Configurations checkbox.

  3. Within the Discovery Options section, select the resources that you would like to import into Address Manager as part of the rediscovery.
    Note: To delete resources that currently exist in Address Manager but no longer exist in AWS, Azure, and GCP since the previous discovery task, select the Remove Deleted Resources option.

    You can manually retrieve and delete resources that currently exist in Address Manager and no longer exist in AWS, Azure, and GCP since the previous discovery task using the GET http://<Gateway_url>/cloud-discovery/api/v1/provider/<aws_azure_or_gcp>/detection and DELETE http://<Gateway_url>/cloud-discovery/api/v1/entity API methods. For more information, refer to REST API endpoints.