AWS
Access Keys

Use this guide to manually set up the HeyCloud AWS Integration with access keys.

See Role Delegation for a guide to how setup the HeyCloud AWS Integration using Role Delegation.

AWS

  1. In your AWS console, create an IAM user to be used by the HeyCloud integration with the necessary permissions below.
  2. Generate an access key and secret key for the HeyCloud integration IAM user.

HeyCloud

  1. In the HeyCloud accound, click Add AWS Account, and then select Manually.
  2. Select the Access Keys tab.
  3. Enter your Account ID, AWS Access Key and AWS Secret Key.
  4. Click Save.

Wait up to 2 minutes for data to start being collected, and then view the out-of-the-box AWS Overview Dashboard to see data data sent by your AWS services and infrastructure.

Warning

Please do not input your admin access keys to HeyCloud, carefully follow the instructions in this page to stay secure.

AWS IAM Permissions

AWS IAM permissions enable HeyCloud to collect metadata, metrics, tags, EventBridge events, and other data necessary to manage your AWS environment.

To correctly set up the AWS Integration, you must attach the relevant IAM policies to the HeyCloud AWS Integration IAM Role in your AWS account.

AWS Integration IAM Policy

The set of permissions necessary to use all the integrations for individual AWS services.

The following permissions included in the policy document use wild cards. If you require strict policies, use the complete action names as listed and reference the Amazon API documentation for your respective services.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "ec2:*",
                "s3:*",
                "rds:*",
                "lambda:*",
                "dynamodb:*",
                "cloudformation:*",
                "cloudwatch:*",
                "iam:*",
                "route53:*",
                "elasticloadbalancing:*"
            ],
            "Resource": "*"
        }
    ]
}