The following article describes the process of how to create a new AWS cloud connection in CLOUD TOGGLE.
1. From the left-hand side menu, click on Cloud Connections.
2. On the Getting Started screen, click on the AWS icon. Give the connection a name and then click Next.
3. Select the method of authentication for the cloud connection. Choose either IAM Role (Recommended) or Account Keys. Click Next
3.1 IAM Role (Please scroll further down for the steps for using account keys (3.2))
Search for 'IAM Policies' in the AWS search bar, and then select the IAM Policies option from the results:
Click on Create Policy, in the top-right hand corner of the screen.
Click on JSON.
Copy the JSON from the CLOUD TOGGLE wizard and paste it into the Policy editor in AWS.
NOTE: Ensure the polocy editor is completely blank before pasting the policy in from CLOUD TOGGLE. Either select the existing JSON and paste over the top of it, or delete everything in the editor and paste in the policy.
Click on Next, and then click Next in CLOUD TOGGLE.
Give the policy a name and description, and add any tags if desired.
Click Create policy.
4. Search for 'IAM' in AWS and click on the 'IAM' result.
Click on Roles from the left-hand side menu.
Click on Create role.
Click on AWS account.
Click on the 'Another AWS account' radio button. Then from the CLOUD TOGGLE wizard, copy the CLOUDTOGGLE account ID and paste it into the Account ID field in AWS:
Check the Require external ID check box. Enter in a 20 character (minumum) ID and then copy and paste that into the External ID box in CLOUD TOGGLE.
Click Next.
IN AWS, click Next.
Search for and select the CLOUDTOGLE policy.
Click Next.
Add in any tags if desired, and then click on the Create role button.
Once it's been created, click on the new role.
Copy the ARN and paste it onto CLOUD TOGGLE.
Click on Test Connection.
The connection should return a success message as follows:
Click Next.
On the final screen click on ADD button to add the cloud connection. There is a toggle (set to on by default) which will fetch and add your cloud resources automatically. Turn this off if you plan to add your resources later on. Leaving it set to on will add all the supported resources in the AWS subsctiption.
3.2 Using account keys.
From the drop-down box select Account Keys.
Click Next.
Search for 'IAM Policies' in the AWS search bar, and then select the IAM Policies option from the results:
Click on Create Policy, in the top-right hand corner of the screen.
Click on JSON.
Copy the JSON from the CLOUD TOGGLE wizard and paste it into the Policy editor in AWS.
NOTE: Ensure the polocy editor is completely blank before pasting the policy in from CLOUD TOGGLE. Either select the existing JSON and paste over the top of it, or delete everything in the editor and paste in the policy.
Click on Next, and then click Next in CLOUD TOGGLE.
Give the policy a name and description, and add any tags if desired.
Click Create policy.
Click Next in CLOUD TOGGLE.
In AWS, click on Users in the Identity and Access Management (IAM) area. Select the user account to be used for the connection.
Click on Security credentials.
Scroll down to Access keys and click on Create access key.
Select Third-party service and check the box to accept the warning. Click Next.
Add any tags if desired and click on Create access key.
Copy the access key and secret access keys from AWS into CLOUD TOGGLE. Click Next in CLOUD TOGGLE.
Click Done in AWS.
Click on Test Connection.
The connection should return a success message as follows:
Click Next.
On the final screen click on ADD button to add the cloud connection. There is a toggle (set to on by default) which will fetch and add your cloud resources automatically. Turn this off if you plan to add your resources later on. Leaving it set to on will add all the supported resources in the AWS subsctiption.
4. Once the connection has been added it will show the overview of the cloud connection. There is no need to click on the UPDATE button on this screen. Navigate to Manage Servers in order to see the cloud resources (VM's) that have been imported into CLOUD TOGGLE.
Comments
0 comments
Please sign in to leave a comment.