AWS Onboarding

Amazon Web Services (AWS) cloud onboarding

Note: AWS related items still in early stages. Work in progress.

To onboard AWS cloud clients have choices:

  • Credentials per Account - clients would require creating and submitting IAM user programmatic credentials as many times as many accounts being onboarded. This will limit our discovery and access per one Account.

    Required parameters:

    • Access Key ID

    • Secret Access Key

  • Credentials per Organisation - clients would require creating one IAM user in any account (preferably in management account, but we do support child Account IAM user also) and create roles for all Accounts (including management). By providing role while onboarding your cloud you are telling platform what this is organisational onboarding type.

    Supported Scenarios:

    • IAM user created on any Account on Customer Organization side which can assume roles for Accounts in Customer Organization. To discover Accounts User must assume role on Management Account. See full list for permissions on Credentials per Organisation.

      Required parameters:

      • Access Key ID

      • Secret Access Key

      • Role Name

    • IAM user created on any Account on Service Provider Organization side which can assume roles for Accounts in Customer Organization. To discover Accounts User must assume role on Management Account. See full list for permissions on Credentials per Organisation.

      Required parameters:

      • Access Key ID

      • Secret Access Key

      • Role Name

      • Customer Management Account ID

PreviousGoogle OnboardingNextCredentials per Account

Last updated