Connecting Your AWS Account in Cloud Application Manager

Introduction

You need to connect your cloud account before you can deploy workloads from Cloud Application Manager. Here's a quick step-by-step demo of how to connect to an AWS account.

Create Custom AWS Policy

First, you need to create a custom AWS policy. From within your AWS account, click on the Services tab at the top of the page. From the drop down, select IAM — Amazon’s Identity and Access Management service.

Cloud Application Manager Select AWS IAM

From the IAM Dashboard menu, select Policies.

Cloud Application Manager AWS Create Policy Step 1

Select Create Policy. Next to Create Your Own Policy, click Select.

Cloud Application Manager AWS Create Policy Step 2

Give your policy a name, drop in your policy document and click Validate Policy. When the policy has been validated successfully, click Create Policy.

Cloud Application Manager AWS Create Policy Step 3

Your Cloud Application Manager Policy has now been successfully created.

Cloud Application Manager AWS Create Policy Step 4

Create IAM Role and Attach Policy

From your Services Dashboard in AWS, select Roles.

Cloud Application Manager AWS New Role

  • Click Create a New Role.
  • Set Role Name.
  • For Role Type, click on Role for Cross-Account Access.
  • Select the option "Allows IAM users from a 3rd party AWS account to access this account.”

Cloud Application Manager AWS Role Type

In Establish Trust, enter your Account ID and an External ID.

Cloud Application Manager AWS Role Trust

Now attach the new policy you just created to this role.

Cloud Application Manager AWS Attach Policy

Review your newly defined role. If you're satisfied, click Create Role in the lower right hand corner.

Cloud Application Manager AWS Review Role

From the list of Roles, select the role you just created.

Cloud Application Manager AWS Select Role

On the Role Summary page, you can now see the Role ARN (Amazon Resource Name.) Make a note of this name, because you'll need it for the last part of this exercise.

Register IAM Role in Cloud Application Manager

From your workspace in Cloud Application Manager, select the Providers tab. Then click New Provider.

Cloud Application Manager New Provider

Select AWS from the cloud providers listed.

Cloud Application Manager New Provider

Give this New Provider a name. Then input your Account Role ARN that you just identified in AWS.

Cloud Application Manager New Provider ARN

This is What Success Looks Like

You’re done! Click on the Logs or Configuration tabs to view your settings.

Cloud Application Manager New Provider Success