AWS
- 02 May 2023
- 2 Minutes to read
- Print
- DarkLight
- PDF
AWS
- Updated on 02 May 2023
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
This guide will teach you how to set up the connector between AWS and Clarity Security.
Estimated time to setup connector: 10 minutes
If you encounter any problems, please contact your support team or support@claritysecurity.io.
Supported Connector Capabilities
Below are capabilities supported by the connector at this time.
| Method | Supported |
|---|---|
Provision User | Yes |
List Groups and Policies | Yes |
Add User to Groups and Policies | Yes |
Remove User from Groups and Policies | Yes |
Deactivate User | Yes |
Delete User | Yes |
How To Setup The Connector
Step 1: Log in to AWS IAM
Visit AWS IAM and sign in with administrative-level credentials.
Step 2: Navigate to Access Management > Users
Once you have AWS Identity and Access Management (IAM) open, you want to Navigate to "Access Management" and then "Users".
Step 3: Click "Add User"
Click on the "Add User" button in the upper right to begin creating a new user.
Step 4: Configure the User
Give the user a descriptive name such as "Clarity-App-Connector" and select the "Access key - Programmatic access" credential type.
Step 5: Attach the Existing Policy "IAM FullAccess"
Search for the "Attach existing policies directly" option to find the "IAM FullAccess" policy, then attach this to the new user account.
Step 6: Review the New User and Create
Review the settings and permissions for the new user and click Create if everything looks correct.
Step 7: Record the Credentials
Record the Access Key ID and Secret Access Key from AWS in a secure location so that they can be used in Step 11.
Step 8: Log in to Clarity Security
Your URL will be https://your-tenant.claritysecurity.io/login
Step 9: Navigate to Applications
Click on the Applications tab and then click Marketplace to bring up the application connector marketplace.
Step 10: Find AWS and click Connect
Either scroll or use the search filter in the upper right to search for the AWS option in the Marketplace.
Step 11: Fill out the First Configuration Page
Fill out the "Connect App" page using the credentials from Step 7.
- access_key_id: copy and paste the AWS Access Key ID from Step 7
- secret_access_key: copy and paste the AWS secret access key from Step 7
- Unique Identifier: aws (default)
- Access via: API (default)
Unique Identifier
If you are connecting Clarity Security to multiple AWS environments, change the unique identifier field to reflect the specific environment this connection is for (every unique identifier must be unique from others)
Step 12: Fill out the App Settings Form
Complete the form for Step 2 of the "Configure App" process by filling out the form. Review the chart at the top of this page to determine if the API connection does not support any features.
Step 13: Fill out the User Settings Form
Complete the form for Step 3 of the "Configure App" process by filling out the form with the values representing your organization's needs. Review the chart at the top of this page to determine if the API connection does not support any features (such as deactivate vs. delete).
Step 14: Validate Your Selections and Save
Save
Clicking the Save button will trigger the first full sync for your application (even if you selected Manual Syncing). This includes Service Users, Entitlements, Service User Entitlements, Service User Attributes.
Need Help?
If you have any problems, contact your customer success team. You can also get in touch with our general support via email, open a support ticket. Our general support team is available Monday - Friday from 8:00 AM - 6:30 PM CST.
Was this article helpful?
