Cloud Profiles and using a Security Group from a VPC association
We use a Cloud Profile to start build agents.
They currently have a security group associated with them from their VPC.
AWS however also allows for security groups to be available in other VPCs using VPC Association.
I have a set of security groups in a different VPC but they are associated with the VPC used by the build agents.
However I cannot add these security groups to the Cloud Profile as I believe it is not showing the associated security groups and only those directly created inside the selected VPC.
Am I missing something? Or is this something that can be fixed in the TeamCity UI to show associated security groups and allow them to be selected for the build agent?
Please sign in to leave a comment.
Hi Mike,
Indeed, you are correct and this is a current limitation of the TeamCity EC2 Cloud Profile. The security group dropdown only lists security groups that are directly owned by the selected VPC. Security groups shared from other VPCs via VPC Association are not included in the list.
As a workaround, it might work to use an AWS Launch Template that has the VPC related security group IDs pre-configured in its network interface settings.