/
Using IAM Role (Recommended)

Using IAM Role (Recommended)

Owned by Daria Lebedeva
Last updated: Mar 07, 2025
3 min read

This article explains how to add AWS accounts to Cloudaware using an AWS IAM role. Ensure you have the necessary permissions in AWS.

 

  1. Log in to Cloudaware account → Admin.

    AWS Start Guide - using IAM role - admin.png

     

  1. Find Amazon Web Services. Click +N CONFIGURED +ADD AWS ACCOUNT:

    AWS Start Guide - using IAM role - N configured.png

     

    AWS Start Guide - using IAM role - add AWS account.png

     

  1. Type AWS account name in the form. Select 'IAM role' as authentication type.

    a. Select AWS Partition:

    AWS Start Guide - using IAM role - integration form - partition.png


    b. Generate External ID:

    AWS Start Guide - using IAM role - integration form - external ID.png

     

    Copy and save External ID required for Cloudaware IAM Role creation in the AWS console.

    c. Select the option for CloudFormation stack creation:

Quick launch

Quick launch

This option allows launching AWS CloudFormation stack with a pre-generated Cloudaware template. Click LAUNCH STACK to be redirected to the AWS Console:

AWS Start Guide - using IAM role - integration form - quick launch - launch stack.png

Manual creation

This option allows the manual creation of AWS CloudFormation stack. Click TEMPLATE to download* the CloudFormation template:

AWS Start Guide - using IAM role - integration form - manual creation - download template.png

*Download populated with account data - the template will contain your AWS Account data auto-populated, e.g. S3 bucket names
Download with placeholders - the template will contain placeholders that need to be populated with data from your AWS account

  1. Log in to the AWS console:

Quick launch

Quick launch

AWS Start Guide - using IAM role - AWS console - S3 URL populated.png

Manual creation

Go to All Services → the section 'Management & Governance' → CloudFormation

Click Create Stack  With new resources (standard).

AWS Start Guide - using IAM role - AWS console - create stack with new resources.png

Under 'Prerequisite - Prepare template', select Choose an existing template.

Under 'Specify template', select Upload a template file click Choose file and upload the Cloudaware template.

AWS Start Guide - using IAM role - AWS console - upload a template file.png

Click Next.

  1. Specify stack details:

    a. Provide Stack name.

    b. Fill in Parameters:

    AWS Start Guide - using IAM role - AWS console - parameters.png

    WHERE
    CloudAware Role ARN - leave it as is
    CloudAware Role Name - replace auto-generate with a meaningful name, e.g. CloudawareRole
    External ID - paste External ID generated in the Cloudaware console (see step 3.b)

  2. Set up tags and permissions, stack failure options, and advanced options if necessary. Check the box I acknowledge that AWS CloudFormation might create IAM resources with custom names. Click Next.

  3. Review the stack details. Click Submit.

Please allow some time for the stack to be created.

 

  1. Open the tab 'Outputs' for the created stack. Copy the IAM Role ARN value.

  2. Go back to Cloudaware. Paste Role ARN in the form. Click CHECK:

    AWS Start Guide - using IAM role - integration form - final check.png


    Once validation is passed, click SAVE.

Please allow some time for Cloudaware to collect AWS data.