How to add AWS cloud account
The process of adding an account consists of configuration steps on the client’s AWS account and proper configuration in the Cloudmizer application
- Prerequisites
- Adding an account in Cloudmizer
Prerequisites
As part of the prerequisites, we will save some data that will be useful in the next step.
You will perform the next steps in your AWS cloud account. Log in to it: https://aws.amazon.com/console/
Creating Billing
Process to Billing services.
Select “Cost & Usage Reports” from the left menu.
Create a new report by pressing Create Report.
Name the report and select the option to add resource IDs “Include resource IDs”.
After proceeding, press the “Next” button. Page display step 2 and press the “Configure” button and create a new bucket. Note that the name must be unique across the entire platform.
After you provide the “S3 bucket name” and the Region, then choose the option “The following default policy will be applied to you bucket” and finally the “Save” button.
Input the “S3 path prefix” and rest of the option stay as is. Click the “Next” button
On the last page you can review the option, but before you end this step write down few values which will be used in future.
As part of this step, write down the value of the report name
As part of this step, write down the value of the bucket name
Creating a Policy
After logging into the AWS console, go to the IAM services
Use the left menu to go to Policies
Then, using the “Create Policy” button, we start creating the object. After reloading the page, go to the JSON tab
Delete the default values and paste the definition provided below:
The value of XYX change to previously saved bucket name
{
“Version”: “2012-10-17”,
“Statement”: [
{
“Sid”: “VisualEditor0”,
“Effect”: “Allow”,
“Action”: [
“cur:DescribeReportDefinitions”,
“ec2:DescribeReservedInstances”,
“ec2:DescribeCapacityReservations”,
“ec2:DescribeRegions”,
“rds:DescribeReservedDBInstances”,
“savingsplans:DescribeSavingsPlans”
],
“Resource”: “*”
},
{
“Sid”: “VisualEditor1”,
“Effect”: “Allow”,
“Action”: [
“s3:GetObject”,
“s3:ListBucket”
],
“Resource”: [
“arn:aws:s3:::XYZ/*”,
“arn:aws:s3:::XYZ“
]
}
]
}
Example:
We go further through the “Next”, we give the created policy a name.
We finish the role creation process with the button “Create policy”.
Create a dedicated group
Being in IAM, select User Groups from the left menu, and select the Create Group option.
We give the group a name.
Select the previously created policy.
We go through the list of users to the position of attaching permissions policies. Using the filter, we search for the policy named “AWSPriceListServiceFullAccess” and mark the position. We clean the filter with the “Clear filters” button.
We search again for the last ready policy “AWSOrganizationsReadOnlyAccess” and select it.
Confirm the group creation process with the Create group button.
Create a user
Being in IAM, select Users from the left menu, and select the Add user button.
Name the user and in the access type select the access option using the key and the secret key “Programmatic access”. Go further with the “Next: Permissions” button.
Add user to group and process further by “Next”.
Then “Next”.
A confirmation screen will be displayed, which we confirm with “Create User”.
After page reload find the user on the list and click on his name.
Move to “Security credentials” tab and choose the “Create access key” under Access keys
On the first step pick “Command Line Interface (CLI) and choose “I understand the above recommendation and want to proceed to create an access key.”. Then click the “Next” button. On second step you can provide optional tag name. Then go the step 3 clicking “Create access key” button.
As part of this step, write down the Access key ID and Secret access key.
Then finish process by click “Done” button.
Adding a cloud account in Cloudmizer
After logging in to the application, go to
After clicking on +Add account, a form will be displayed in which we select the provider to AWS and give any name for the added account. Then we confirm the willingness to add an account by checking “I want to connect Cloudmizer with my cloud account”.
Next, paste the prepared Key ID and Secret data.
Optionally, we can enter information about our fixed discount in relation to the standard price list.
Finally, select the option “I have created Cost & Usage Reports for my account” and paste the saved report name.
After completing the form, select the SIGN button. The data download process will start and your account will appear in the list. This process may take up to 24 hours.