Add an AWS Account
Dashboard>Select Add an account
AWS accounts can be added to the Trend Micro Cloud One™ – Conformity platform in two ways:
Automated mode - These are accounts created using AWS Cloudformation. The Conformity Cloudformation template includes the Conformity custom policies - Part 1 and 2 and on the creation of the Cloudformation stack, an IAM role is created. This role in turn gives cross account access so that Conformity can access your account.
We recommend that the Cloudformation stack be launched in North Virginia, us-east 1. Although, you can launch the stack in any region but since the resources inside the template are AWS IAM resources, they will be created in North Virginia so there is no advantage in launching the stack in another region. Furthermore, if the stack is in another region, Conformity account access settings will not show the account as managed by CloudFormation.
Manual mode - In this type of account, you will need to manually create the IAM role which grants cross-account access so that Conformity can access your account. You will also need to create the Conformity policies and attach it to the IAM role. 3. Follow instructions on the next window:
How many accounts can I add to one organization and how will I be charged?
Customers with Conformity Subscription: There is no limit to the number of accounts you can add to an organization. If you add more accounts than your Enterprise Agreement, you will be charged per additional account or as per the growth model in your contract.
Customers with AWS Marketplace Subscription: Once you hit your maximum accounts threshold as per your contract, you are not able to add cloud accounts to your organization anymore. Please get in touch with your Sales representative or Account Manager to review your account threshold.