Setting Up Specific Cloud Configs

You can sync cloud accounts onto TotalCloud with a filter restricting the sort of resources that can be viewed.

These configs and the filters attached to them are not related to IAM on AWS or any other related access management on the cloud provider level. They are protective filters on the TotalCloud level.

You can set up an account (using a Role or Key), and add specific tags to that config, so that only resources with those tags can be accessed by that config.

  • Login to TotalCloud

  • Go to the Accounts tab

  • Click on AWS --> Account --> Sync Another Account

    • This will open up the page for adding a new AWS Account

    • Use a Role or a Key to add an account config

    • Before clicking save, you can enter the tags to select which resources are accessible by that config. Click on Add Tag and enter the tag Key and Value.

    • Click Save

We can see this working with some examples:

Case 1: A config for all resources of the testing team - provides access to only those resources in the Demo account that have the tag team set to testing

Case 2: A config for all resouces of the engineering team - provides access to only those resources in the Demo account that have the tag team set to eng

Case 3: A config for all resouces of the Demo

Once the required configs are added, they can be seen in the Accounts tab:

  • Each of the configs shown here can only access the resources that have the tags mentioned next to them

  • If there are no tags mentioned, the config can access all the resources of that account

User Management Using Cloud Configs