Configuring an AWS gateway
You can add an AWS gateway in PingOne Privilege using one of two methods. After a gateway is added, the PingOne Privilege controller automatically discovers which cloud resources can be reached through it.
|
Before you can configure an AWS gateway, you must first onboard an AWS EKS account. |
Method 1: Adding a Gateway Using the Wizard
The wizard provides a guided, step-by-step experience for adding an AWS gateway. This is the recommended method for most users.
-
In the PingOne Privilege admin console, go to Cloud > Gateways.
-
Click Add New, and then click Add via Wizard.
-
Follow the on-screen instructions to configure the gateway details.
-
Click Finish to complete the setup.
Method 2: Adding a Gateway Using Docker
This method involves generating a Docker command from the PingOne Privilege admin console and running it in your AWS environment. This is suitable for automated or scripted deployments.
-
In the PingOne Privilege admin console, go to Cloud > Gateways.
-
Click Add New, and then click Add via Docker.
-
Select the gateway type:
-
Private Proxy: For networks that allow inbound connections.
-
Relay: For networks that only allow outbound connections.
-
-
Enter the Cluster ID for your EKS cluster.
-
Depending on the gateway type, provide the following:
-
For a Private Proxy, enter the Host IP.
-
For a Relay, enter the Host Name.
-
-
Click Get Docker Command to generate the command.
-
Copy the generated command and run it in your EKS environment to start the gateway container.