Application Security Groups for Service Instances
This page describes the Security Groups for the a9s Service Instances.
Cloud Foundry Application Security Groups
Each a9s Data Service will automatically create and update Cloud Foundry security groups in order to protected Service Instances to be accessed by applications not running in the same Cloud Foundry applications space.
To get a better understanding about Security Groups please refer to the Understanding Application Security Groups topic in the Cloud Foundry documentation.
Get Service Instance GUID
Run cf service my-dataservice-service-instance --guid to get the guid of the Service Instance.
cf service my-dataservice-service-instance --guid ca16f111-5073-40b7-973a-156c75dd3028
Check available Security Groups
To see all available security groups use cf security-groups.
$ cf security-groups
Getting security groups as demo@anynines.com
OK
Name Organization Space
#0 public_networks
#1 dns
#2 tcp_open
#3 guard_432fb752-876d-443b-a311-a075f4df2237 demonstrations demo
#4 guard_ca16f111-5073-40b7-973a-156c75dd3028 demonstrations demo
There we can see a security group with the named guard_ca16f111-5073-40b7-973a-156c75dd3028 was successfully created.
In some circumstances the connection between the application and the Service Instance is not possible, in this case check if a security group was created.