Security group through another security group

Question

I have two AWS Accounts, one database in the main account and one shared VPC betweeen accounts (AWS RAM).

The DocumentDB (database) is configured to use a security group that lives in the main account.

In the secondary account I have access to the VPC but no access to the security groups of the VPC, so I've created a new Security group in this secondary account.

What I want to do is connect to the database of the Main Account from the Secondary Account.

Thannks,

VPC sharing participants can reference security group IDs of each other. Believe you would simply indicate the security group ID or possibly <account-number>/<security-group-id>. Can you try those? — jarmod
You're right, I had to put as inbound rule for one security group the acc-nbr/security-group from the other one. That fixed my problem! — Leandro

jarmod jarmod · Accepted Answer · 2019-06-08T19:54:04

VPC sharing participants can reference each other’s security groups via account-number/security-group-id

Security group through another security group

1 Answers