Info |
---|
This article instructs on adding an AWS account explains how to add AWS accounts to Cloudaware using the an AWS IAM role. Ensure you have the necessary permissions in AWS. |
Log in to your Cloudaware account → Admin.
...
Find Amazon Organizations & Accounts. Click +N Configured →+Add Amazon Account.ADD AMAZON ACCOUNT:
...
Type AWS account name in the form. Select 'AWS IAM role' as authentication type.
a. Select AWS Partition.:
...
b. Generate External ID clicking the button Generate Random:
...
Copy and save External ID required for Cloudaware IAM Role creation in AWS console.
...
Quick launch | Manual creation |
---|---|
This option allows launching AWS CloudFormation stack with a pre-generated Cloudaware template. Click Launch Stack to be redirected to AWS Console: | This option allows the manual creation of AWS CloudFormation stack. Click Template to download* the CloudFormation template: *Download populated with account data - the template will contain your Cloudaware account-specific data with AWS Account data auto-populated, e.g. billing buckets |
4. Log in to AWS console:
Quick launch | Manual creation |
---|---|
Note that Amazon S3 URL is pre-selected as Template source. The URL for Cloudaware template is auto-populated. Click Next. | Go to All Services → the section 'Management & Governance' → CloudFormation. Click Create Stack → Stack → With new resources (standard). Select Upload a template file →click Choose file* to upload the template. Click Next. * - upload the Cloudaware template. |
...
CloudAware Role ARN: leave it as is
CloudAware Role Name: Replace replace auto-generate with a meaningful name, e.g. Cloudaware IAM _Role
External ID: paste External ID generated in the Cloudaware console (see step 3.b)
c. In the section 'Policies', select preferable features. Click Next.
6. Configure stack by setting Set up tags and permissions, stack failure options, and advanced options if necessary. Click Next.
...
Once validation is passed,click Save.
Your AWS account will be added automatically. Please allow some time for Cloudaware to gather data from your AWS account based on the granted permissionscollect AWS data.