Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 29 Next »

This article instructs on adding an AWS account to Cloudaware using the AWS IAM role. Ensure you have a Cloudaware account and the necessary level of access to the AWS console before proceeding.

  1. Log in to your Cloudaware account → Admin.

new admin.png
  1. Find Amazon Organizations & Accounts. Click +N Configured → +Add Amazon Account.

admin - add aws account.pngadmin - add amazon account.png
  1. Type AWS account name in the form. Select 'AWS IAM role' as authentication type.

a. Select AWS Partition.

Screenshot 2024-09-12 at 3.04.10 PM.png

b. Click Generate Random (crossed arrows button) to generate External ID:

Screenshot 2024-09-12 at 3.04.38 PM.png

Copy and save External ID required for Cloudaware IAM Role creation in AWS console.

c. Select the option for CloudFormation stack creation:

Quick launch

Manual creation

This option allows launching the AWS CloudFormation stack with a pre-generated Cloudaware template. Click Launch Stack to be redirected to AWS Console:

aws start guide - using iam role - quick launch - launch. stack.png

This option allows the manual creation of and setting up of a stack for the Cloudaware IAM role. Click Template to download* the CloudFormation template:

aws start guide - using iam role - manual creation - download template.png

*Download populated with account data - the template will contain your Cloudaware account-specific data with AWS Account data auto-populated
Download with placeholders - the template will contain placeholders that need to be populated with AWS accounts data

4. In AWS console, if you chose:

Quick launch

Manual creation

Note that Amazon S3 URL is pre-selected as Template source. The URL for Cloudaware template is auto-populated. Click Next.

aws start guide - using iam role - aws console - s3 url populated.png

Go to All Services → the section 'Management & Governance' → CloudFormation

Click Create Stack → With new resources (standard).

aws start guide - using iam role - aws console - create stack with new resources.png

At the 'Step 1 - Create Stack'* select Upload a template file click Choose file* to upload the template. Click Next.

aws start guide - using iam role - aws console - upload a template file.png

* - upload the Cloudaware template.

At the 'Step 2 - Specify stack details' in AWS:

a. Provide Stack name (or leave it as is, e.g. cloudaware-iam-role-stack)

b. Fill in Parameters:

aws start guide - using iam role - parameters in aws.png

WHERE

CloudAware Role ARN: leave it as is

CloudAware Role Name: Replace auto-generate with a meaningful name, e.g. Cloudaware IAM Role

External ID: paste External ID generated in the Cloudaware console

c. In the section 'Policies', select preferable features. Click Next.

At the 'Step 3 - Configure stack options' in AWS: set up tags and permissions, stack failure options, and advanced options. Click Next.

At the 'Step 4 - Review and create' in AWS: check the stack details and check the box I acknowledge that AWS CloudFormation might create IAM resources with custom names. Click Submit.

aws start guide - using iam role - capabilities.png

Please allow some time for the stack to be created.

Open the tab 'Outputs' for the created stack. Copy the IAM Role ARN value.

5. Go back to Cloudaware. Paste Role ARN in the form. Click Check:

aws start guide - using iam role - paste role arn.png

Once validation is passed, click Save.

Your AWS account will be added automatically. Please allow some time for Cloudaware to gather data from your AWS account based on the granted permissions.

  • No labels