Skip to main content

Cloud

Prerequisites for Onboarding AWS

This is a list of things to have ready before you begin onboarding your AWS accounts or organizations.

Before you begin onboarding AWS

  • You need the ability to log into an AWS account. The onboarding wizard flow assumes that you are already logged into an AWS account.

  • You need the ability to create an IAM role in your AWS account and assign it permissions

  • You need to know your account IDs that you want to onboard. If you are onboarding an organization, this will include the root account ID. You will need to specify your account IDs in the wizard.

  • If you are restricting public access to flow logs, you need to make certain ports and IP addresses available to Illumio Cloud. See AWS Flow Log Access Illumio Cloud IP Addresses.

  • If onboarding an account, but not an organization, determine the method you want to use for onboarding the account, whether by using Illumio to launch the CloudFormation Stack or by using an Illumio-provided YAML file as a template to manually create the stack

Required Permissions

Onboarding requires certain permissions. Use the steps described in Onboard an AWS Cloud account and Onboard an AWS Cloud organization to automatically provision the permissions.

See Permissions for Onboarding AWS.