AWS Integration

This guide will walk you through the process of running CloudFormation on either an individual AWS account or on your AWS Organization.

You can integrate Method with your AWS accounts by creating a dedicated read-only IAM Role in the account that you want Method to have visibility into. Method can then securely assume this role when it is performing a scan. This means that you don’t need to generate long lived credentials for your account and you are always in complete control over what access the Method Platform has within your account.

Setting up this integration will require you to create an IAM Role within your AWS account and then register that role and it’s unique external identifier with the Method Platform. Once you register it with Method, you will be able to tell Method which particular Method Environments are able to leverage this cloud connection.

Finally, if you leverage the AWS Organization functionality within AWS, you will be able to automatically register any new account within either your AWS Organization or a pre-defined Organization OU. This provides you with an automatic and zero effort integration to make sure that you have total visibility across your AWS portfolio.

There are three mechanisms that you can use to create the necessary IAM Role and register it with the Method Platform.