-
제목
Error adding AWS asset: "A WebException with status TrustFailure was thrown" -
설명
"A WebException with status TrustFailure was thrown" error appears as a task output when trying to add an AWS (Amazon Web Services) asset.
-
원인
By default, Safeguard does not have the correct Amazon certificate or the AWS certificate in its trusted certificate store.
The platform.log shows:
"Amazon.Runtime.AmazonServiceException: A WebException with Status TrustFailure was thrown.
The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.
System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure." -
해결 방안
Complete the following steps before adding an Amazon AWS asset to Safeguard:
- Add Amazon's certificate and AWS certificate's root CA to the Trusted Certificates store in Safeguard.
- Add the IAM user to Amazon AWS.
- Take note of the IAM user's Access key and Secret access key.
- Give the IAM user Administrator Access.
Once the steps have been completed, proceed to add an Amazon AWS asset through the Add Asset dialog box.
The Network Address field of the Add Asset dialog should contain the Amazon AWS Account ID. This can be found on the AWS IAM Users view.
The Access Key field should contain the AWS IAM user's Access Key, and the Secret Key field should contain the AWS IAM user's Secret access key.
Use the Test Connection button to verify that the values are correct.