|   Trend Micro™ Cloud One
Open menu

How to update a manually created account to CloudFormation?

Here are the steps to update your Cloud Conformity access to CloudFormation

CloudFormation Account Setup

Cloud Conformity introduced a more efficient method of adding accounts using Cloud Formation [CFN] mid last year. But today, there are many accounts which have not yet been migrated to CFN or automated account set up mode. Migrating your manually created accounts to CFN makes it easier for upgrading your Cloud Conformity Template as well as for managing your resources collectively. The guide below gives you steps for this feature.

To update the access


For every AWS account, navigate to IAM Policies and IAM Roles, and delete any previously created resources for Cloud Conformity. Ensure that this is done for both Policies and Roles.
Policies: https://console.aws.amazon.com/iam/home?region=us-east-1#/policies Roles: https://console.aws.amazon.com/iam/home?region=us-east-1#/roles


Log in to Cloud Conformity and for each account, navigate to Settings => Access Settings


The Cloud Formation toggle at the top of the page will be in OFF state by default.
Turn this ON.


Once the toggle has been turned on, click on the Launch Stack button.
This will take the user to the AWS Cloud Formation console.


Keep all the inputs as the default and check the "I acknowledge that AWS CloudFormation might create IAM resources with custom names" option and click Create.


Once stack creation is completed, go to the Outputs; section and copy the value of the CloudConformityRoleArn.


Navigate back to Cloud Conformity Access settings page and paste the above copied value in the ARN field and click on Save.

This completes migration of your account to CloudFormation.