Step 3: Add resources to your AWS Resilience Hub application
This section discusses the following options that you can use to form the basis of your application structure:
Add resource collections
This section discusses the following methods that you use to form the basis of your application structure:
-
Using AWS CloudFormation stacks
-
Using AWS Resource Groups
-
Using AppRegistry applications
-
Using Terraform state files
-
Using an existing AWS Resilience Hub application
Using AWS CloudFormation stacks
Choose the AWS CloudFormation stacks that contain the resources you want to use in the application you're describing. The stacks can be from the AWS account that you are using to describe the application, or they can be from different accounts or different Regions.
To discover the resources that form the basis of your application structure
-
Select CloudFormation stacks to discover your stack-based resources.
-
Choose stacks from the Select stacks dropdown list that are associated with your AWS account and Region.
To use stacks that are in a different AWS account, different Region, or both, enter the Amazon Resource Name (ARN) of the stack in the Add stack outside of AWS Region box, and then choose Add stack ARN. For more information about ARNs, see Amazon Resource Names (ARNs) in the AWS General Reference.
Using AWS Resource Groups
Choose the AWS Resource Groups that contain the resources that you want to use in the application that you're describing.
To discover the resources that form the basis of your application structure
-
Select Resource groups to discover the AWS Resource Groups that contain the resources.
-
Choose resources from Select resource groups dropdown list.
To use AWS Resource Groups that are in a different AWS account, different Region, or both, enter the Amazon Resource Name (ARN) of the stack in the Resource Group ARN box, and then choose Add Resource Group ARN. For more information about ARNs, see Amazon Resource Names (ARNs) in the AWS General Reference.
Using AppRegistry applications
You can add only one AppRegistry application at a time.
Choose the AppRegistry applications that contain the resources that you want to use in the application that you're describing.
To discover the resources that form the basis of your application structure
-
Select AppRegistry to select from a list of applications created in AppRegistry.
-
Choose applications, which were created in AppRegistry, from the Select application dropdown list. You can choose only one application at a time.
Using Terraform state files
Choose the Terraform state file that contains your S3 bucket resources that you want to use in the application you're describing. You can navigate to the location of your Terraform state file or provide a link to a Terraform state file you have access to that’s located in a different Region.
Note
AWS Resilience Hub supports Terraform state file version 0.12
and later.
To discover the resources that form the basis of your application structure
-
Select Terraform state files to discover your S3 bucket resources.
-
From the Select state files section, choose Browse S3 to navigate to the location of your Terraform state file.
To use Terraform state files located in a different Region, provide the link to the location of Terraform state file in the S3 URL field, and choose Add S3 URL.
The limit for Terraform state files is 4 megabytes (MB).
-
Select your S3 bucket from the Buckets section.
-
From the Objects section, select a key, and choose Choose.
Using an existing AWS Resilience Hub application
To get started, use an existing application.
To discover the resources that form the basis of your application structure
-
Select Existing application to build your application from an existing application.
-
Select an application from the Select existing application dropdown list.
Add EKS clusters
This section discusses about using Amazon EKS clusters to form the basis of your application structure.
Note
You must have Amazon EKS permissions and additional IAM roles to connect to the Amazon EKS cluster. For more information about adding single account and cross-account Amazon EKS permissions and additional IAM roles to connect to the cluster, see the following topics:
Choose the Amazon EKS clusters and namespaces that contain the resources you want to use in the application you're describing. The Amazon EKS clusters can be from the AWS account that you are using to describe the application, or they can be from different accounts or different Regions.
Note
For AWS Resilience Hub to assess your Amazon EKS clusters, you must manually add the relevant namespaces to each of the Amazon EKS clusters in EKS clusters and namespaces section. The namespace name must match exactly with the namespace name on your Amazon EKS clusters.
To add Amazon EKS clusters
-
Choose the Amazon EKS clusters from the Choose EKS clusters dropdown list that are associated with your AWS account and Region.
-
To use Amazon EKS clusters that are in a different AWS account, different Region, or both, enter the Amazon Resource Name (ARN) of the stack in the Cross account or Region box, and then choose Add EKS ARN. For more information about ARNs, see Amazon Resource Names (ARNs) in the AWS General Reference.
For more information about adding permissions to access cross-Region Amazon Elastic Kubernetes Service clusters, see Enabling AWS Resilience Hub access to your Amazon Elastic Kubernetes Service cluster.
To add namespaces from the selected Amazon EKS clusters
-
In the Add namespaces section, from the EKS clusters and namespaces table, select the radio button located at the left of Amazon EKS cluster name, and then choose Update namespaces.
You can identify Amazon EKS clusters by the following:
-
EKS cluster name – Indicates the name of the selected Amazon EKS clusters.
-
# of Namespaces – Indicates the number of namespaces selected in the Amazon EKS clusters.
-
Status – Indicates whether AWS Resilience Hub has included the namespaces from the selected Amazon EKS clusters in your application. You can identify the status using the following options:
-
Namespace required – Indicates that you have not included any namespaces from the Amazon EKS cluster.
-
Namespaces added – Indicates that you have included one or more namespaces from the Amazon EKS cluster.
-
-
-
To add a namespace, in the Update namespaces dialog box, choose Add a new namespace.
The Update namespaces dialog box displays all the namespaces that you have selected from your Amazon EKS cluster, as an editable option.
-
In the Update namespaces dialog box, you have the following edit options:
-
To add a new namespace, choose Add a new namespace, and then enter the namespace name in namespace box.
The namespace name must exactly match with the namespace name on your Amazon EKS cluster.
-
To remove a namespace, choose Remove located next to the namespace.
-
To apply the selected namespaces to all the Amazon EKS clusters, choose Apply namespaces to all EKS clusters.
If you choose this option, your previous namespace selection in the other Amazon EKS clusters will be overridden with the current namespace selection.
-
-
To include the updated namespaces in your application, choose Update.