AI Docs

Creating a Amazon Web Services (AWS) Connector

3 min read

certero logo_cropped_png-01 1.png

Managing API client access to Amazon Web Services (AWS)

The Certero connector for Amazon Web Services (AWS) uses Identity and Access Management (IAM) to connect and retrieve data from AWS.  IAM controls who is authenticated (signed in) and authorized (has permissions) to use resources.

Note that the Certero connector needs Admin Read-Only access to ALL resources.

For more information on AWS IAM Authentication, please see the following link:

AWS IAM Overview

Providing the AWS IAM connection details

In order to create a connector for AWS in the Certero Platform, there are several details you will need to enter. These are:

  • Regions

  • Account ID

1. Sign into your AWS Account using an administrator login.

2. Click your name located on the top right navigation pane

3. Select My Account

Your AWS Account ID is the twelve-digit number located underneath the Account Settings section.

  • Access Key

  • Secret Key

The Access Key and Secret Key can found in the IAM console .

1. In the navigation bar on the upper right, click on the username, and then choose My Security Credentials :

2. Click on the AWS IAM Credentials tab.

For more information about access keys and secret keys please see this link

Create a new Certero Amazon Web Services Connector

Enable the feature for the Endpoint Server.

1. In Certero > Administration > Endpoint Servers , right click on the endpoint server the AWS connector will be ran against and choose properties.

2. Click on the Features option.

3. Enable the Amazon Web Services Connector row.

4. Click on Save :

Create a connector for Amazon Web Services.

1. In Certero > Connectors > Amazon Web Services Connectors , click the ‘ New ’ button.

2. Enter a name for the connector.

3. Select the required Regions from the drop-down list:

4. Copy and paste the Account Id into the Account Id

5. Copy and paste the Access Key into the Access Key

6. Copy and paste the Secret Key into the Secret Key field and the Confirm

7. Click on Validate. A success message will be displayed:

8. Click on Save .

AWS Connector URLs

The AWS connector requires access to the following websites to collect the data from AWS using HTTPS port 443.

You will notice that the URL changes depending on the region. The regions and their user friendly descriptions are also provided below.

https://ec2. {Region} .amazonaws.com
https://iam.amazonaws.com
https://elasticloadbalancing. {Region} .amazonaws.com

{Region}
ap-south-1 => Asia Pacific (Mumbai)
ap-northeast-2 => Asia Pacific (Seoul)
ap-southeast-1 => Asia Pacific (Singapore)
ap-southeast-2 => Asia Pacific (Sydney)
ap-northeast-1 => Asia Pacific (Tokyo)
ca-central-1 => Canada (Central)
eu-central-1 => EU (Frankfurt)
eu-west-1 => EU (Ireland)
eu-west-2 => EU (London)
sa-east-1 => South America (Sao Paulo)
us-east-1 => US East (N. Virginia)
us-east-2 => US East (Ohio)
us-west-1 => US West (N. California)
us-west-2 => US West (Oregon)