Creating an authentication method
SecureCloudDB provides the ability to save authentication methods so that you can use it when needed without having to re-enter credentials. This functionality should also be used to track any methods that are currently in use for access control reasons.
To get started creating you first AWS Authentication, head into the
Setup > AWS Authenticationsection and click the blue circle with a plus sign in the center of it.
Enter a name and description for the auth method. We recommend you leave yourself a note (e.g. "Auth for prod account") to keep track of your methods should you need to add more than one.
On step 2, select and enter your desired authentication method and click
- You can assume an IAM role that you grant SecureCloudDB access to assume that has the required permissions to access your resources. This means that we are managing an agent for you in our environment.
- Alternatively, you can manually set the access key by create an IAM user and manually give SecureCloudDB credentials to access your resources. This also means we are managing an agent for you in our environment.
- Lastly, you can use an AWS Instance Profile. This would require hosting an agent inside of your environment which can be done via a CloudFormation template we have created.
On the final step, review your choices. If everything looks okay, select
Createto finish creating the authentication method for your AWS account.
Once created, if you have not yet done so, you can now setup your first Asset Discovery to begin ingesting your cloud data into the platform.