Description:
The AWS integration enables Truzta to continuously monitor your cloud environment for compliance and security best practices. With this integration, Truzta automatically tracks IAM policies, user roles, and resource configurations, ensuring that privileged access is properly managed and that your critical resources remain securely configured.
By connecting AWS, Truzta validates your environment against compliance frameworks and cloud security benchmarks—helping you stay audit-ready with minimal effort.
Scopes and Permissions Required
To successfully connect AWS and allow Truzta to perform automated compliance checks, the following AWS managed policies are required:
ReadOnlyAccess
Grants permissions to retrieve cloud resource details, including inventory of services such as S3 buckets, EC2 instances, and RDS databases.SecurityAudit
Provides access to audit logs and security configurations, including IAM policies, user roles, and findings from services like AWS Security Hub and GuardDuty.
These policies ensure Truzta has the visibility it needs while maintaining a least-privilege approach.
Integrating AWS
Amazon Web Services (AWS) is one of the most widely used cloud providers. Truzta allows you to integrate one or more AWS accounts to perform automated daily scans for misconfigurations and evidence collection.
Contents
Integrating your first AWS account
Connecting multiple AWS accounts
Auto-collecting Pull Request Evidence
Step 1: Integrating Your First AWS Account
From the top navigation bar, go to Integrations.
In the Cloud Service Providers section, select AWS.
Follow the step-by-step wizard to grant the required permissions.
Once connected, Truzta will begin automated scans and display results in your dashboard.
Step 2: Click the Integrations button located in the upper-right corner of the dashboard.
Step 3: In the Provider dropdown, select Amazon Web Services (AWS).
Step 4: From the region settings, choose All Regions.
Step 5: Click the Integrate with CloudFormation button to begin the setup process.
Step 6: You will be redirected to the AWS Login page.
Step 7: Sign in with your AWS credentials. After login, you will be automatically redirected to the AWS CloudFormation Stack setup page.
Step 8: In the CloudFormation console, enter a Stack Name of your choice to identify the integration.
Step 9: Scroll to the bottom of the page and select the Acknowledgement checkbox.
Step 10: Click Create Stack to launch the CloudFormation stack.
Step 11: After the stack is created, wait 1–2 minutes for the status to update from CREATE_IN_PROGRESS to CREATE_COMPLETE. You may also refresh the page after a minute to view the latest status.
Step 12: To monitor progress, open the Resources tab and verify that all resources show a successful status.
Step 13: Return to the Truzta dashboard, refresh the page, and confirm that the integration status is shown as Active.
The integration is now complete. The initial scan may take 20–30 minutes to finish. Once completed, the compliance and security results will be available in your Truzta Dashboard.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article
