Versions Compared

Version Old Version 45 New Version Current
Changes made by

Daria Lebedeva

Daria Lebedeva

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Info

This article explains how to add AWS accounts to Cloudaware using an AWS IAM role. Ensure you have the necessary permissions in AWS.

...

  1. Log in to Cloudaware account → Admin.

...

  1. Find Amazon Organizations & Accounts. Click +N Configured CONFIGURED +ADD AMAZON ACCOUNT:

...

  1. Type AWS account name in the form. Select 'AWS IAM role' as authentication type.

    a. Select AWS Partition:

...

  1. AWS start guide - using IAM role - Cloudaware form - partition.pngImage Added


    b. Generate External ID:

...

  1. Screenshot 2024-09-12 at 3.04.38 PM.pngImage Added

    Copy and save External ID required for Cloudaware IAM Role creation in AWS console.

    c. Select the option for CloudFormation stack creation:

Quick launch

Manual creation

This option allows launching AWS CloudFormation stack with a pre-generated Cloudaware template. Click

Launch Stack

LAUNCH STACK to be redirected to AWS Console:

aws start guide - using iam role - quick launch - launch. stack.pngImage Removed
aws start guide - using iam role - quick launch - launch. stack.pngImage Added

Manual creation

This option allows the manual creation of AWS CloudFormation stack. Click

Template

TEMPLATE to download* the CloudFormation template:

aws start guide - using iam role - manual creation - download template.pngImage Modified

*Download populated with account data - the template will contain your AWS Account data auto-populated, e.g.

billing buckets

S3 bucket names
Download with placeholders - the template will contain placeholders that need to be populated with data from your AWS

accounts data

account

...

  1. Log in to the AWS console:

Quick launch

aws start guide - using iam role - aws console - s3 url populated.pngImage Added

Manual creation

Note that Amazon S3 URL is pre-selected as Template source. The URL for Cloudaware template is auto-populated. Click Next.

aws start guide - using iam role - aws console - s3 url populated.pngImage Removed

Go to All Services → the section 'Management & Governance' → CloudFormation

Click Create Stack  With new resources (standard).

aws start guide - using iam role - aws console - create stack with new resources.pngImage RemovedSelect

AWS start guide - using IAM role - AWS console - create stack with new resources.pngImage Added

Under 'Prerequisite - Prepare template', select Choose an existing template.

Under 'Specify template', select Upload a template file click Choose file

* to

and upload the Cloudaware template.

AWS start guide - using IAM role - AWS console - upload a template file.pngImage Added

Click Next.

aws start guide - using iam role - aws console - upload a template file.pngImage Removed

* - upload the Cloudaware template.

...

  1. Specify stack details:

    a. Provide Stack name

...

  1. .

...


  1. b. Fill in Parameters:

...

  1. AWS start guide - using IAM role - AWS console - parameters.pngImage Added

    WHERE
    CloudAware Role ARN

...

  1. - leave it as is
    CloudAware Role Name

...

  1. - replace auto-generate with a meaningful name, e.g.

...

  1. CloudawareRole
    External ID

...

  1. - paste External ID generated in the Cloudaware console (see step 3.b)

...


...

  1. Set up tags and permissions, stack failure options, and advanced options if necessary.

...

  1. Check the box I acknowledge that AWS CloudFormation might create IAM resources with custom names

...

  1. . Click Next.

  2. Review the stack details. Click Submit.

...

Note

Please allow some time for the stack to be created.

...

  1. Open the tab 'Outputs' for the created stack. Copy the IAM Role ARN value.

...

  1. Go back to Cloudaware.

...

  1. Paste Role ARN in the form. Click 

...

  1. CHECK:

...

  1. AWS start guide - using IAM role - Cloudaware form - final check.pngImage Added


    Once validation is passed,click

...

  1. SAVE.

Please allow some time for Cloudaware to collect your AWS data.