AWS
Consuming data from AWS requires a service user with the following IAM read-only access for each AWS account to be integrated.
Step 1 - Security, Identity, & Compliance
Navigate to the Security, Identity, & Compliance menu and choose “IAM”.
![AWS IAM Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/aws-iam.png)
Step 2 - Create a new user
![AWS User Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/create-new-user.png)
Click "Create user".
Give the user a name (e.g., CommandCenterSvcUser) and do not choose "AWS Management Console access," then click "Next."
![New AWS User Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/user-details-new-user.png)
Click "Attach policies directly."
![Attach policies Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/attach-policies.png)
Select these three policies: ReadOnlyAccess, CloudWatchReadOnlyAccess, and AmazonSSMReadOnlyAccess. You will have to toggle to the All types filter.
![All Types filter Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/all-types.png)
Click "Next" and "Create User" to complete the new user Creation.
![Review Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/review.png)
Step 3 - Create Access Keys.
Click on the user, and then Security Credentials.
![Security Credentials Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/security-credentials.png)
Navigate to Access Keys, and click "Access Keys."
![Access Keys Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/access-keys.png)
Click "Create Access Keys," then choose "Application running outside AWS." Click "Next" and give the keys a name.
![Application running outside AWS Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/app-running-outside-aws.png)
Step 4 - Create a new Location in Command Center with the Access Keys.
Copy the keys and create a new Location in the Command Center.
![Copy Keys Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/copy-keys.png)
In Command Center, browse to Organization > Location. Click "Add Location" at the top right corner.
![Add Location Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/add-location.png)
Give the Location a name, choose AWS as the type of location, and enter the keys. Then, choose Cloud Discovery Frequency. Click "Submit."
![Add AWS Location Alt text](https://www.trolleyesecurity.com/wp-content/uploads/2024/04/create-aws-location.png)
Updated 1 day ago