Update AWS Account Automatically
When your AWS account failed to be added to FortiCWP, you can update the AWS account on FortiCWP to re-add the account. It also gives you a chance to add or delete the optional permissions to the existing account. For more details, see AWS Permission and Resource Requirements
Update AWS Account - Part 1
- From the FortiCWP navigation pane, go to Admin > Account, click Action button of the account and select Update Account.
- In Update AWS Account selection, select Update this Account Automatically and click Update AWS Account.
- Enter the AWS Account ID of the account to be updated and name the account. In Select Permission section, select optional permissions to be granted to FortiCWP as needed.
- In CloudTrail section, select "Yes" to allow FortiCWP to create a CloudTrail for the account, or "No" if you already created one.
- Click Next to continue to the next page.
- Click Go to AWS CloudFormation Guide to be re-directed to AWS CloudFormation guide to clean up the previous configurations.
- A new page will pop up with AWS CloudFormation Guide, click Next at the bottom of each page until the last page, and click Create Stack.
- Refresh the stack status page and until the FortiCWPClean stack status shows "CREATE_COMPLETE".
- Go back to FortiCWP add account page, and click Next to continue.
Update AWS Account - Part 2
After part 1 is completed, a status update will show that the cleanup stack have removed the old CloudFormation, roles, and policies.
- Click Next to continue with the rest of the steps.
- Click Go to AWS CloudFormation Guide again to create new stack for the AWS account.
- A new page will pop up with AWS CloudFormation Guide, click Next at the bottom of each page until the last page, and click Create Stack.
- Refresh the stack status page until the FortiCWP stack status shows "CREATE_COMPLETE".
- Go back to FortiCWP update account page, and click Update AWS Account to complete.