Is it possible to visualize data that was ingested from multiple AWS accounts that have connections? #34
Comments
|
Hi @jokercygnus, Thanks for the question. You're absolutely right, this is not yet something we have support for. Long story but currently data is loaded into the db by wrapping For now, you can try unzipping the two zipped datasets you want to view and merging each CSV with the same name. Hopefully, if you zip it all up again, you can load it with |
|
Thank you for the reply. |
|
I've added preliminary support for loading multiple ZIPs; however, it would be a bit of a cop out to say this feature has been added. The problem is that atm, resources are identified by their ARNs, as are generics and pseudo-nodes like Admin and CatchAll - which are not uniquely identifiable across zips. What you end up with is a single dataset that is misleading. Things like built-in managed policies do not include account numbers in their ARNs and so the actions they can perform in each account will be added together. It will appear as though users attached to them in one account can now perform actions affecting resources in both, which is incorrect. Things like attack paths do not consider accounts at all. A fair amount of work needs to be done for this feature so for the time being the CLI will not accept more than one ZIP, although the function it calls takes a list. I'd prefer to add additional labels to each resource, rather than a property but need to do more investigation. |
Hi,
Im trying to visualize data that was ingested from multiple AWS accounts, with the same profile (using AssumeRole).
Unfortunately, it is only possible to load and visualize one DB at a time.
Is there any way that I am missing to do that?
The text was updated successfully, but these errors were encountered: