Arpio Configuration Tag Reference
      Back to home
      1. Arpio Documentation
      2. Reference Guides
      3. Arpio Configuration Tag Reference

      arpio-config:fsx:SecurityGroupIds

      Constrain the SecurityGroupIds values used to create the filesystem to include only the values present in the tag's value.

      arpio-config:fsx:SecurityGroupIds = <security-group-ids>

      <security-group-ids>

      A list of the primary environment security group IDs, separated by whitespace, that are necessary to create the filesystem in the recovery environment.

      Supported Resources

      • FSx file systems

      Description

      This tag helps Arpio create the filesystem in the recovery environment with the correct initial set of security groups when more than the create limit are present and Arpio cannot automatically determine which security groups are necessary.  After the filesystem is created, Arpio will associate all additional security groups automatically.

      The tag's value is used to reduce the set of security group IDs presented during the request to restore the filesystem so that it doesn't exceed AWS limits for filesystem creation.  When a primary environment filesystem has a small number of security groups assigned to its associated ENIs, use of this tag is not necessary.  When the count of security groups across all associated ENIs exceeds the create limit for the filesystem type, this config tag is necessary to ensure the filesystem is restored with the correct set of initial security groups.  The limit varies per filesystem type, and possibly based on account quota limits (see below).

      FSx for Windows Notes

      The limit on security groups for FSx for Windows filesystem creation is 5, even if the Security groups per network interface quota limit has been increased to a higher number in the recovery environment.  Use this tag when the primary environment filesystem has more than 5 security groups assigned across its associated ENIs.  Specify between 1 and 5 security group IDs in the tag's value, separated by whitespace.  Ensure the set of security groups you choose will allow the filesystem to connect to its associated Active Directory during recovery.

      Examples

      Tag Value 
      arpio-config:fsx:SecurityGroupIds
      sg-00708db8e96ab765a
      		 
      arpio-config:fsx:SecurityGroupIds
      		 sg-00708db8e96ab765a sg-06fa4cdb21d80e7aa

      The first example tells Arpio to create the filesystem using one security group ID.  The second example specifies two security group IDs, separated by a space.