Jump to Content
CoreStack Documentation
HomeGuidesAPI ReferenceChangelog
Log InCoreStack Documentation
Guides
Log In
HomeGuidesAPI ReferenceChangelog

Getting Started

  • Setting up your Account
  • Set Up an Organizational Hierarchy
  • Naming Updates - OSCAR to FinOps/SecOps/CloudOps

Governance

  • Account Governance
    • Cloud Accounts
    • Tools
  • Guardrails
    • Policies
      • Permissions for Platform GCP Policies
      • List of Policy Name Changes
      • Policy Exclusions
    • Recommendations

FinOps

  • FinOps Dashboard
    • Create, Edit, and Delete Dashboards
    • Clone Dashboard
    • Add, Edit, and Remove Dashboard Permissions
    • Create / Delete Dashboard View
    • Query-Based Filters in Dashboard
    • FinOps Widget Framework
      • FinOps Widget Capabilities
    • Cost Forecasting
    • Subscribe, Edit, and Unsubscribe Dashboard Email
  • FinOps Posture
  • Budget
    • Creating and Managing a Budget
  • Anomaly Dashboard
    • Configuring Cost Anomaly Settings
    • Cost Anomaly Widgets in Dashboard
    • Cost Anomaly Dashboard Deep Dive
    • Cost Anomaly Details Deep Dive
    • Reject Cost Anomaly
  • Markups and Discounts
  • Cost Optimizer
    • Optimization Dashboard
    • Optimize Usage - Rightsizing
    • Optimize Usage - Optimize Configuration
    • Optimize Usage - Schedule Recommendations
    • Optimize Usage - Idle
    • Optimize Usage - Orphaned
    • Optimize Rate - Long Term Savings
    • Optimize Rate - Savings Plan
    • Optimize Rate - License Benefits
    • Optimize Actions
  • FinOps Glossary of Terms
  • Billing Inventory

SecOps

  • SecOps Dashboard
    • SecOps Widget Framework
      • SecOps Widget Capabilities
  • SecOps Posture
  • Compliance Posture
  • Access Posture
  • Compliance Standards
    • My Standards
  • AWS Security Hub
  • List of Policy Name Changes
  • Real-Time Threat Configuration for AWS
  • Real-Time Threat Configuration for Azure
  • SecOps Maturity Assessment
  • Compliance Assessment Report

CloudOps

  • CloudOps Posture
  • Templates
    • Multiple Template Selection for Tenant
  • Blueprints
  • AWS SSM Documents
  • Activity
    • AWS Activity Help
  • Monitoring and Alerts
    • CloudWatch Agent
    • System Metrics
  • Cloud Inventory
    • Resource Posture
    • Inventory
    • Locks
    • Tag Governance
      • Service Resource Tag List
  • Workloads

Assessments

  • Assessments Overview
  • Out-of-the-Box Frameworks
  • Custom Frameworks
  • Onboard Cloud Accounts for Assessments
    • AWS Prerequisites for Assessments
    • Azure Prerequisites for Assessments
    • GCP Prerequisites for Assessments
    • AWS Onboarding for Assessments
    • Azure Onboarding for Assessments
    • GCP Onboarding for Assessments
  • Receive the Initial Automated Assessments
  • Start Your First Platform Assessment
  • Understanding Key Elements of Assessments
  • Role-Based Access Control (RBAC) for Assessments
  • Assessment Reports

Self-Service

  • Self-Service Dashboard
  • Self-Service Catalogs
  • Order Management
  • Workspace

REPORTS

  • Reports Overview (Merge with Reports)
  • Reports
    • CloudOps Reports
      • Resource Reports (Merge with above)
    • SecOps Reports
      • Compliance Reports (Merge with above)
    • FinOps Reports
  • Navigating within Reports
  • Report Features
    • Generate Reports
    • Save Views
    • Share Saved View
    • Export Reports
    • Share Reports
    • Schedule/Subscribe Reports
    • Subscribe vs Share Report
    • Apply Filters
    • Report Properties

Settings

  • Pre-Onboarding Overview
    • AWS Permissions
      • Onboarding Permissions for AWS - Read-Only
      • Onboarding Permissions for AWS - Read-Write
    • AWS Pre-Onboarding Guides
      • Pre-Onboarding for AWS Management Accounts
      • Pre-Onboarding for AWS Member Accounts
      • Onboarding Multiple AWS Member Accounts from a Management Account using AWS StackSets
    • Azure Permissions
      • Onboarding Permissions for Azure - Read-Only
      • Onboarding Permissions for Azure - Read-Write
    • Azure Pre-Onboarding Guides
      • Pre-Onboarding for Azure Subscriptions (PayG, CSP Indirect)
      • Pre-Onboarding for Azure Enterprise Agreements (EA)
      • Pre-Onboarding for Azure CSP Direct Accounts
    • GCP Permissions
      • Onboarding Permissions for GCP - Read-Only
      • Onboarding Permissions for GCP - Read-Write
    • GCP Pre-Onboarding Guides
      • Pre-Onboarding for GCP Billing Accounts
      • Pre-Onboarding for GCP Linked Project Accounts
      • Pre-Onboarding for GCP Parent Billing Accounts
    • OCI Permissions
      • Onboarding Permissions for OCI - Read-Only
      • Onboarding Permissions for OCI - Read-Write
    • OCI Pre-Onboarding Guides
      • Pre-Onboarding for OCI Tenancies
  • Onboard Accounts
    • AWS Onboarding
      • Onboarding for AWS Management Accounts
      • Onboarding for AWS Member Accounts
      • AWS Management Account Onboarding - EDP/PPA Commit Configuration
    • Azure Onboarding
      • Onboarding for Azure Subscriptions (PayG, CSP Indirect)
      • Onboarding for Azure Enterprise Agreements (EA)
      • Onboarding for Microsoft Partner Agreements (Azure CSP Direct)
      • CSP Customer to Tenant Access
    • GCP Onboarding
      • Onboarding for GCP Cloud Billing Accounts
      • Onboarding for GCP Linked Project Accounts
      • Onboarding for GCP Parent Cloud Billing Accounts
      • Onboarding a GCP Billing Account with Terraform
    • OCI Onboarding
      • Onboarding for OCI Tenancies
  • Post-Onboarding Overview
    • Cloud Account Status & Configurations Dashboard
    • Cloud Account Offboarding
  • Integrate Tools
    • Azure DevOps
    • Tenable Nessus
    • Azure Application Insights
    • Zoho ServiceDesk
    • ServiceNow
      • ServiceNow CMDB Integration
    • Webhooks for Microsoft Teams
  • Account Management
    • Tags at Account Master/Tenant/Cloud Account
    • Fiscal Year Settings
  • Tenant Management
    • Global Tenant Filter
  • Identity and Access Management
    • Users
    • User Groups
    • User Delegation
    • Roles (RBAC)
    • Authorization
  • Audit Log
  • Currency Exchange Plans
  • My Profile

FAQs

  • Product Tours

API Guide

  • Runbooks
  • CoreStack External APIs

Legal

  • Terms for Dedicated Setup
  • SaaS Terms and Conditions (EULA)
  • Data Privacy

Support

  • Support

Release Notes

  • Release Notes 5.0 (2501)
    • External APIs 5.0 (2501)
  • Release Notes 4.5 (2404.1)
    • External APIs 4.5 (2404.1)
  • Release Notes 4.5 (2404)
    • External APIs 4.5 (2404)
  • Release Notes 4.4 (2403)
    • External APIs 4.4 (2403)
  • Release Notes 4.4 (2402)
    • External APIs 4.4 (2402)
    • List of Service Integrations (v4.4 - 2402)
  • Release Notes 4.3 (2401 + 2401.1)
    • External APIs 4.3 (2401) - What's New
    • External APIs 4.3 (2401) - What's Deprecated
    • External APIs 4.3 (2401) - What's Changed Part-I
    • External APIs 4.3 (2401) - What's Changed Part-II
    • External APIs 4.3 (2401) - What's Changed Part-III
    • External APIs 4.3 (2401) - What's Coming Next
  • Release Notes 4.2 (2307)
  • Release Notes 4.2 (2306)
    • External APIs 4.2 (2306)
  • Release Notes 4.2 (2305)
    • External APIs 4.2 (2305)
  • Release Notes 4.1 (2303-2304)
    • External APIs 4.1 (2303 - 2304)
  • Release Notes 4.0 (2302)
    • External APIs 4.0 (2302)
  • Release Notes 4.0 (2301)
    • External APIs 4.0 (2301)
  • Release Notes 3.9.2
    • External APIs 3.9.2
  • Release Notes 3.9.1
  • Release Notes 3.9
  • Release Notes 3.8
  • Release Notes 3.7
  • Release Notes 3.6
  • Release Notes 3.5
  • Release Notes 3.4
Powered by 

AWS Permissions

Suggest Edits

Refer to the following user guides to get a summary of which least privilege policies are required to setup in your AWS cloud portal for different products and access levels:

  • Onboarding Permissions for AWS - Read-Only
  • Onboarding Permissions for AWS - Read-Write

Updated 2 months ago