In Dripstat
On the 'Add' page select 'AWS'.
On the AWS Integration page, in the dialog enter your:
- AWS Account ID, eg 1279474332
- A role name, eg DripstatAWSIntegrationRole
This name will be used in a later step
Click 'Add'.
After adding, you should see the 'External ID' value which will be used later.
In AWS
Go to your AWS Management Console.
- Go to Services > IAM. Click Roles. Click 'Create Role'
- Select 'Another AWS Account'
- Type the Dripstat Account ID here, which is 766330917559
- Check the 'Require external ID' box. Make sure to leave the 'Require MFA' box unchecked)
- In the External ID field, enter the External ID shown in the Dripstat AWS Integration page.
- Click 'Next: Permissions'
- Click 'Create Policy', this will open a new tab
- Select the JSON tabe and paste the policy json snippet below.
- Click 'Review Policy'
- Give your policy any name, like 'DripstatAWSIntegrationPolicy'. Click 'Create Policy'
- Go back to the 'Create Role' tab. Refresh the policy list and select the policy just created.
- Click 'Next: Review'
- Give the role the same name you mentioned in the Dripstat configuration above, DripstatAWSIntegrationRole
- Click 'Create Role'.
Dripstat AWS Integration Policy
{
"Version": "2012-10-17",
"Statement": [ {
"Effect": "Allow",
"Action": "ec2:DescribeTags",
"Resource": "*"
}]
}