I want to create an Amazon FSx for NetApp ONTAP file system in a shared Amazon Virtual Private Cloud (Amazon VPC) so that it can be accessed by another account. How do I do this?
To create and share your FSx for ONTAP file system, the following prerequisites must be met:
- Account A is the main account of the organization, and Account B has joined the organization.
- Account A turned on sharing in the AWS Resource Access Manager (AWS RAM).
- Account A creates one VPC with two subnets, and shared these two subnets to Account B.
- Account A creates a FSx for ONTAP file system.
- Account B creates an Amazon Elastic Compute Cloud (Amazon EC2) instance using the shared VPC.
- Account B mounts the FSx for ONTAP file system of Account A in the shared VPC.
Create shared subnets
- Open the AWS RAM console.
- Select Create a resource share.
- In Step 1: Specify resource share details, enter a resource share name. For example, Shared_VPC_TEST.
- For Select resource type, select Subnet, and then choose the subnets to be shared from the list or resources.
- Select Next.
- In Step 2: Associate a permission with each resource type, select Next. ( AWSRAMDefaultPermissionSubnet is the only permission available.)
- In Step 3: Choose principals to grant access, enter the 12-digit account ID that you’re sharing the resource with, and then choose Add.
- Select Next.
- In Step 4: Review and create, make sure that all details are correct, and then select Create resource share.
For detailed steps on creating a resource share, see Create a resource share.
Note: You can't share subnets that are in a default VPC.
Create your FSx for ONTAP file system in a shared VPC and access it from the shared account
- Create an FSx for ONTAP file system in the shared VPC that contains the shared subnet. For detailed instructions on creating a file system, see Step 1: Create an Amazon FSx for NetApp ONTAP file system.
- From the account that the resource is shared, launch an EC2 instance in the shared VPC, and then mount the FSx for ONTAP file system on the instance. For detailed instructions on how to mount the file system, see Mounting volumes.
AWS Resource Access Manager
AWS account management