Once you've finished enumerating the resources in your company's AWS account, best practices dictate that you should decommission the resources, users, and roles that you've created. We can quickly clean up the resources by deleting the CloudFormation stacks and StackSets.
- Delete the individual stacks.
- Delete the stacks within the StackSet. (You cannot delete the StackSet if it is managing stacks.)
- Delete the StackSet.
- Select the Master Account Role creation stack.
- Click the Delete button.
- Confirm with the Delete button.
- Follow the same steps for the Red Canary Resource Discovery User stack.
- Confirm with the delete button.
- Click into the StackSets.
- Select the Resource Discovery Roles StackSet.
- Click the Actions dropdown.
- Select Delete stacks from StackSet.
- Enter the Organizational Unit id for your root account.
- This can be found in the organization's service.
- This can be found in the organization's service.
- Select the region where the StackSet deployed.
- Click Next.
- On the Review page click Submit.
- Once the operation has succeeded click on StackSets.
- Select the Resource Discovery Role StackSet.
- Click the Actions dropdown and select Delete StackSet.
- Confirm the Delete action.
The stacks for the Resource Discovery User and the Resource Discovery Role on the master account are deleted. Additionally, the Resource Discovery Roles within each sub account, as well as the StackSet that managed them, have been removed.
Comments
0 comments
Please sign in to leave a comment.