Skip to main content

AWS Integration - Manual Configuration

Integrate Lacework with AWS to analyze CloudTrail activity and configuration compliance. This topic describes how to manually integrate Lacework with AWS.

  1. Log in to the Lacework Console.
  2. Go to Settings > Integrations > Cloud accounts.
  3. Click + Add New.
  4. Click Amazon Web Services and select Manual configuration.
  5. Click Next.
  6. Select an integration type and follow the steps that correspond to the integration type.

AWS Configuration

Ensure you have completed the preparatory steps described in AWS Config Integration Prerequisites.

  1. For Name, enter a unique name that displays in the Lacework Console.
  2. For Account ID, enter your AWS account identifier or alias.
  3. For External ID, copy the Lacework-generated external ID. You must use this external ID to replace the temporary one that you provided during cross-account role creation.
    Refer to Update Cross-Account IAM Role External ID for how to update the cross-account role's external ID.
  4. For Role ARN, enter the ARN of the cross-account role that Lacework uses to access your AWS resources.
  5. Click Save to finish the AWS integration and save your onboarding progress.
    The integration appears in the list of cloud accounts under Cloud accounts.

AWS CloudTrail and Configuration

Ensure you have completed the preparatory steps described in AWS CloudTrail Integration Prerequisites.

  1. For Name, enter a unique name that displays in the Lacework Console.
  2. For Account ID, enter your AWS account identifier or alias.
  3. For External ID, copy the Lacework-generated external ID. You must use this external ID to replace the temporary one that you provided during cross-account role creation.
    Refer to Update Cross-Account IAM Role External ID for how to update the cross-account role's external ID.
  4. For Role ARN, enter the ARN of the cross-account role that Lacework uses to access your AWS resources.
  5. For SQSQueueURL, enter the Amazon Simple Queue Service (SQS) URL value.
  6. Click Save to finish the AWS integration and save your onboarding progress. The integration appears in the list of cloud accounts under Cloud accounts.