2023-Nov-03-R11.1a

Creating Public/Secret Keys for Gateway Accounts

Go to Identity and Access Management (IAM) in your Amazon Console.

Go to Policies and click Create policy.

After successfully creating the role, you can open the role and attach an inline policy to allow the current role to assume NetbrainAccessRole in monitored accounts.
Graphical user interface, text, application, email Description automatically generated

Graphical user interface, text, application, email Description automatically generated

A Sample policy JSON is as follows.

	Note: Use the account ID to monitor your environment.

Copy Code

Code

{

    "Statement": [

        {

            "Resource": [

                "arn:aws:iam::<12-digit monitored account number>:role/<role created in previous step (NetbrainAccessRole)>"

            ],

            "Action": [

                "sts:AssumeRole"

            ],

            "Effect": "Allow"

        }

    ],

    "Version": "2012-10-17"

}