Cloud Infrastructure Monitoring (AWS) - IAM Role Delegation-based CloudWatch API option

Ref: Tutorial: Delegate Access Across AWS Accounts Using IAM Roles - AWS Identity and Access Management

We have SolarWinds Orion instances installed in one AWS account and use it to monitor resources that are spread out among other AWS accounts. The best practice here would be to use IAM role delegation to provide the necessary access the Orion Poller EC2 instances will need to our other accounts.

With the number of accounts we monitor (currently 100+ accounts and growing), managing all these keys is really undesirable.

Find more posts tagged with

cloudwatch api

AWS

iam role

Amazon Web Services

cloud infrastructure

Status: None

Comments

skhan

Our business model for AWS is to have multiple accounts (100+) to accurately calculate billing for specific applications for business units. We will be cycling through keys to meet compliance requirements and being able to use IAM Roles would ease the transition versus having to update each account every xx days.

xtraspecialj

2 years down the line, does anyone know if it still isn't possible to use IAM Roles for SolarWinds monitoring?

gkjono

This is something we need as well. Less than a year into AWS and we have over 80 accounts. MANY more to come. Support for rotating access keys would be good too.

larkman808

I need to rotate access keys soon and this feature would be quite helpful.