AWS Authentication methods using Roles and Access Keys

Cloudockit supports two authentication methods for AWS :

  • Method 1 – AWS Access Keys.
  • Method 2 – AWS Roles

You can use either described methods below to sign in to Cloudockit.

 

Method 1 – AWS Access Keys

Step 1 – Create the access keys

  • Then, under Secret Access Keys, click on show. Copy the Access Key ID and the Secret Access Key as they will be use to connect to your AWS Account in Cloudockit

Step 2 – Login to Cloudockit

  • When you will be prompted for AWS authentication, select Use Access Keys :

  • Then, enter the information you copied in the previous step:

  • Then click on Login. You should now see your AWS Account.

Method 2 – AWS IAM Role (Console)

By using this method, you can create a role that will allow your Google or Amazon account to have specific privileges in your AWS Account and them connect to Cloudockit using this account.

Step 1 – To create a role (console)

  • Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
  • In the navigation pane of the console, choose Roles and then choose Create role.
  • Choose the Web identity role type.
  • For Identity Provider select Login with Amazon and copy and paste the Application ID supplied below:
    Application ID: amzn1.application.68980873571XXXXXXXb43b80f942129
  • Click Add condition and complete required fields with the information below:
    Key: select www.amazon.com:user_id from the list.
    Condition: select StringEquals from the list.
    Value: amzn1.account.AGUE111BFIZMCXXXXXXKGROJ6JSQ
  • Click Next: Permissions button to continue.
  • To attach permissions policies, search for ReadOnlyAccess policy and select it.
  • Click Next: Review button to continue.
  • At Review page, enter Role name and click Create role.

Step 2 – Sign in to Cloudockit using AWS Role

When prompted for AWS Authentication, select  Keep going with this account or Use Another Account

  • A new popup invites you enter a role to assume, to enter this field, you need to sign in to AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
  • In the navigation pane of the console, choose Roles and click on the role name that you give access to Cloudockit (see Creating an IAM Role (Console) to create a Web identity role)
  • In Summary page of selected role, copy the value in Role ARN field and paste it into Role to assume in login popup
  • Then click on Login. You should now see your AWS Account.