I am trying to create a connection between 2 VCNs from two different tenancies.
I am following this doc to do it: https://docs.oracle.com/en-us/iaas/Content/Network/Tasks/scenario_d.htm#scenario_dtask_b_dita
Below is the startup information:
Tenancy 1:
- VCN A
- DRG A
Tenancy 2:
- VCN B
I set up the following resources in Tenancy 1:
IAM Policy R
define group vcnAdmin as xxxx
define group drgAdmin as xxxx
define tenancy acceptorVCN as xxxx
endorse group drgAdmin to manage drg-attachment in tenancy acceptorVCN
admit group vcnAdmin of tenancy acceptorVCN to manage drg in tenancy
where:
- `vcnAdmin`is the OCID of the Adminsitrators group that is in the Tenancy 2.
- `drgAdmin` is the OCID of the Administrators group that is in Tenancy 1
- `acceptorVCN` is the OCID of Tenancy 2
IAM Policy A
define tenancy requestorDRG as xxxx
define group drgAdmin as xxxx
define group vcnAdmin as xxxx
admit group drgAdmin of tenancy requestorDRG to manage drg-attachment in tenancy
endorse group vcnAdmin to manage drg in tenancy requestorDRG
where:
- `requestorDRG` is the OCID of Tenancy 1
- `drgAdmin` is the OCID of Administrators group in Tenancy 1
- `vcnAdmin` is the OCID of Administrators group in Tenancy 1
I have added IAM Policy A in the Tenancy 2 as well with the same OCIDs.
I have then created a DRG in Tenancy 1 and created a VCN attachment and attached my VCN 1 with it. This was successful.
Now, when I try to attach VCN 2 using a cross tenancy attachment, I am getting the following error:
Vcn: ocid1.vcn.oc1.af-johannesburg-1.xxx does not exist or you are not authorized to access it
Is there something i am missing ?