Help Center> Cloud Search Service> User Guide> OpenSearch> Creating a Cluster in a Shared VPC
Updated on 2024-06-12 GMT+08:00
View PDF

Creating a Cluster in a Shared VPC

A VPC subnet can be shared by multiple Huawei Cloud IAM accounts. You can create CSS clusters in a shared VPC subnet.

Step 1: Creating VPC Share

  1. Log in to the Huawei Cloud management console.
  2. Click in the upper left corner and choose Management & Governance > Resource Access Manager. The Resource Access Manager page is displayed.
  3. Choose Shared by Me > Resource Shares.
  4. Click Create Resource Share in the upper right corner.
  5. On the displayed Specify Resource Share Details page, configure basic information and specify the subnet to be shared. Search for vpc: subnet and select the target subnet for sharing. Click Next: Associate Permissions in the lower right corner.

    When creating a resource share, you can specify up to 20 resources to share at a time. However, you can update the resource share you created to add more resources. For details, see Updating a Resource Share.

  6. On the Associate Permissions page, associate a RAM managed permission with each resource type, and then click Next: Specify Principals in the lower right corner.

    RAM managed permissions available for your selection are system permissions predefined by RAM. Some resource types may have multiple permissions available. You can select as needed. For the details of each permission, see Viewing the RAM Permissions Library.

    To create a CSS cluster in a shared VPC, you need to select the default vpc subnet statement permission.

  7. On the Grant Access to Principals page, specify the principals that you want to have access to the resources, and then click Next: Confirm in the lower right corner.

    In this step, you can select either Allow sharing with any Huawei Cloud principal or Allow sharing only within your organization. If you select the latter, choose any principals that are within your organization.

    You can set Principal Type to Organization or Huawei Cloud account ID. The Organization option is available only when the toggle key Sharing with Organizations is turned on. For details, see Enabling Sharing with Organizations.

  8. Review and confirm the configuration details of your resource share and select I have read and agree to Privacy Statement on the Confirm page. Then, click Submit in the lower right corner.

    After a resource share is created, RAM sends a sharing invitation to the specified principals. The principals can access and use the shared resources only after they accept the invitation. If the specified principals are within your organization and sharing with Organizations is enabled, the principals can access and use the shared resources without accepting the invitation.

    Each principal can be shared with a maximum of 100 VPC subnets.

Step 2: Accepting VPC Share

  1. Log in to the Huawei Cloud management console.
  2. Click in the upper left corner and choose Management & Governance > Resource Access Manager. The Resource Access Manager page is displayed.
  3. Choose Shared with Me > Resource Shares.
  4. Click the Resource Shares To Be Accepted tab, and select the resource share for which you are invited. Then, click Accept or Reject in the Operation column.
    Figure 1 Responding to a resource sharing invitation
  5. Click OK in the displayed dialog box.

    After you accept invitations from certain resource shares, you can view them on the Accepted Resource Shares page. You can click a resource share name to view its configuration details.

    Each principal can accept the invitations to resource shares involving a maximum of 100 VPC subnets.

Step 3: Creating a Cluster in the Shared VPC Subnet

  1. Log in to the CSS console. In the navigation pane on the left, choose Clusters and select a cluster type.

    For example, log in to the CSS console and choose Clusters > Elasticsearch in the navigation pane on the left.

  2. On the Clusters page, click Create Cluster.
  3. On the Basic Configuration page, configure the cluster parameters. For details, see Creating an Elasticsearch Cluster, Creating a Logstash Cluster, and Creating an OpenSearch Cluster.

    On the Network Configuration page, select the VPC and subnet that are shared with the current account for VPC and Subnet to create a cluster using the shared VPC.

    • VPC: Select the name and ID of the VPC that is shared with the current account.
    • Subnet: Select a subnet for your cluster. You can access the VPC service to view the shared subnet name and ID.

    You can create a CSS cluster in the shared VPC subnet.

Parent topic: OpenSearch