In order to utilize the cloud governance capabilities of CoreStack, you have to integrate your cloud accounts with CoreStack. It involves carefully setting up the prerequisites in your cloud account and providing cloud account related information in CoreStack for integration. Once you complete these steps, you will be able to govern your cloud resources against our OSCAR cloud governance pillars.
There are certain pre-requisites required in your cloud accounts before they can be onboarded into CoreStack. In a nutshell, proper access permissions must be set up in your cloud accounts for CoreStack.
For AWS Accounts, you will have to create an IAM Role for CoreStack with necessary access permissions based on your preference for Assessment-Only or Assessment + Governance to be performed for that account. CoreStack provides ready-made templates that can be used for this purpose which have appropriate access permissions built-in as part of the templates.
For Azure Subscriptions, you will have to create an App Registration for CoreStack and then provide appropriate role assignment for that App based on your preference for Assessment-Only or Assessment + Automation to be performed for that subscription.
For GCP Projects, you will have to create either a user account or service account for CoreStack and then provide appropriate roles for the user account or service account based on your preference for Assessment-Only or Assessment + Governance to be performed for that project.
Note: The check for whether the required access permissions are available for the onboarded account will be performed after onboarding. You will be able to see this status as part of “View Settings” for the account and can also correct the permissions from your cloud portal, if required.
Once you set up the prerequisites in your cloud account and retrieve required information from the cloud console, you can initiate the onboarding process in CoreStack. It only takes 5 mins to onboard your cloud account into CoreStack, provided the prerequisites are taken care of.
You can follow the simple guided workflow for the onboarding process for the supported cloud accounts. Please ensure to have the information explained in the pre-onboarding sections in hand before initiating the onboarding process.
The pre-onboarding and onboarding activities are explained further in detail for different cloud accounts in the following topics of this user guide.
Updated about 2 months ago