Managing access to a Lindorm instance by maintaining individual IP addresses in a whitelist is tedious when your ECS fleet changes frequently. Security groups let you grant access at the group level—any ECS instance added to the group automatically gains access without requiring whitelist updates.
Prerequisites
Before you begin, ensure that you have:
An ECS security group. For more information, see Create a security group
An ECS instance and a Lindorm instance that use the same network type. If both use a virtual private cloud (VPC), they must be in the same VPC
Limits
Each Lindorm instance supports a maximum of three security groups.
After you associate a security group with a Lindorm instance, ECS instances in that group can access the Lindorm instance only over a VPC. Access over the public network or through an Elastic IP address is not supported.
A Lindorm instance supports both a whitelist and security groups simultaneously. IP addresses in the whitelist and ECS instances in the security groups can all access the instance.
Add a security group
Log on to the Lindorm console.
In the upper-left corner, select the region where the instance is deployed.
On the Instances page, click the ID of the target instance, or click View Instance Details in the Actions column.
In the left navigation pane, choose Access Control.
Click the Security Groups tab.
Click Add Security Group.
In the Add Security Group dialog box, select the security group to add.
Click OK.