AWS (IAM) Integration
Overview
Integration with Amazon Web Services (AWS) into FrontierZero, will allow us to get this data:
- User accounts and last login dates.
- Information about Access Keys and their last usage time.
- Two-factor status and password rotation information.
Prerequisites
Before you begin, ensure you have the following:
- An AWS admin who is allowed to create new IAM roles.
Integration Steps
- Log in to FrontierZero platform, and navigate to Integrations page.
- Click on the Add a new integration* to open the Integration Catalog.
- Select the AWS (IAM) Integration
You can search for an integration group by its name through the Search box on the top right.
-
Login to your AWS Console and navigate to IAM.
-
Go to "Roles" and create a new role of type "Custom Trust Policy".
- Paste this Policy into the Trust Policy textbox and click on "Next":
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Statement1",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::282461065152:role/UserDirectorySync"
},
"Action": "sts:AssumeRole"
}
]
}
- Select the appropriate policy depending on the level of access you want to give FrontierZero:
- Read-only access:
IAMReadOnlyAccess
- Read and take action access:
IAMFullAccess
Your newly created role must have the roles mentioned above based on the access levels. Custom policies will not work.
- Once the Role is created, copy the newly created Role ARN and copy it into the connection window.
If the integration is successful, you should see Connected with a green checkmark under the integration in the Active Integrations tab.
Support
If you need assistance or have any questions related to integrations, our support team is here to help. Contact us through the following channels:
Email: support@frontierzero.io
Our support team is available during regular business hours to address your queries and provide assistance.