CINXE.COM

<!doctype html> <html lang="en" dir="ltr" class="docs-wrapper plugin-docs plugin-id-default docs-version-current docs-doc-page docs-doc-id-reference/integrations/aws" data-has-hydrated="false"> <head> <meta charset="UTF-8"> <meta name="generator" content="Docusaurus v3.6.3"> <title data-rh="true">AWS | Cortex</title><meta data-rh="true" name="viewport" content="width=device-width,initial-scale=1"><meta data-rh="true" name="twitter:card" content="summary_large_image"><meta data-rh="true" property="og:url" content="https://docs.cortex.io/docs/reference/integrations/aws"><meta data-rh="true" property="og:locale" content="en"><meta data-rh="true" name="docusaurus_locale" content="en"><meta data-rh="true" name="docsearch:language" content="en"><meta data-rh="true" name="docusaurus_version" content="current"><meta data-rh="true" name="docusaurus_tag" content="docs-default-current"><meta data-rh="true" name="docsearch:version" content="current"><meta data-rh="true" name="docsearch:docusaurus_tag" content="docs-default-current"><meta data-rh="true" property="og:title" content="AWS | Cortex"><meta data-rh="true" name="description" content="Amazon Web Services (AWS) provides on-demand cloud computing platforms and APIs."><meta data-rh="true" property="og:description" content="Amazon Web Services (AWS) provides on-demand cloud computing platforms and APIs."><link data-rh="true" rel="icon" href="/img/logo.webp"><link data-rh="true" rel="canonical" href="https://docs.cortex.io/docs/reference/integrations/aws"><link data-rh="true" rel="alternate" href="https://docs.cortex.io/docs/reference/integrations/aws" hreflang="en"><link data-rh="true" rel="alternate" href="https://docs.cortex.io/docs/reference/integrations/aws" hreflang="x-default"><link data-rh="true" rel="preconnect" href="https://3ZAQCSL5V0-dsn.algolia.net" crossorigin="anonymous"><link rel="preconnect" href="https://www.google-analytics.com"> <link rel="preconnect" href="https://www.googletagmanager.com"> <script async src="https://www.googletagmanager.com/gtag/js?id=G-1XPV2JL4TQ"></script> <script>function gtag(){dataLayer.push(arguments)}window.dataLayer=window.dataLayer||[],gtag("js",new Date),gtag("config","G-1XPV2JL4TQ",{})</script> <link rel="search" type="application/opensearchdescription+xml" title="Cortex" href="/opensearch.xml"><link rel="stylesheet" href="/assets/css/styles.bf1e3c49.css"> <script src="/assets/js/runtime~main.adcc11c4.js" defer="defer"></script> <script src="/assets/js/main.fdf13467.js" defer="defer"></script> </head> <body class="navigation-with-keyboard"> <script>!function(){function t(t){document.documentElement.setAttribute("data-theme",t)}var e=function(){try{return new URLSearchParams(window.location.search).get("docusaurus-theme")}catch(t){}}()||function(){try{return window.localStorage.getItem("theme")}catch(t){}}();t(null!==e?e:"light")}(),function(){try{const n=new URLSearchParams(window.location.search).entries();for(var[t,e]of n)if(t.startsWith("docusaurus-data-")){var a=t.replace("docusaurus-data-","data-");document.documentElement.setAttribute(a,e)}}catch(t){}}()</script><div id="__docusaurus"><div role="region" aria-label="Skip to main content"><a class="skipToContent_fXgn" href="#__docusaurus_skipToContent_fallback">Skip to main content</a></div><nav aria-label="Main" class="navbar navbar--fixed-top"><div class="navbar__inner"><div class="navbar__items"><button aria-label="Toggle navigation bar" aria-expanded="false" class="navbar__toggle clean-btn" type="button"><svg width="30" height="30" viewBox="0 0 30 30" aria-hidden="true"><path stroke="currentColor" stroke-linecap="round" stroke-miterlimit="10" stroke-width="2" d="M4 7h22M4 15h22M4 23h22"></path></svg></button><a class="navbar__brand" href="/"><div class="navbar__logo"><img src="/img/logo_full.webp" alt="Cortex Logo" class="themedComponent_mlkZ themedComponent--light_NVdE"><img src="/img/logo_full_white.webp" alt="Cortex Logo" class="themedComponent_mlkZ themedComponent--dark_xIcU"></div></a><a aria-current="page" class="navbar__item navbar__link navbar__link--active" href="/docs/reference">Reference</a><a class="navbar__item navbar__link" href="/docs/walkthroughs">Walkthroughs</a><a class="navbar__item navbar__link" href="/docs/api">API</a><a href="https://app.getcortexapp.com/" target="_blank" rel="noopener noreferrer" class="navbar__item navbar__link">Login</a></div><div class="navbar__items navbar__items--right"><div class="toggle_vylO colorModeToggle_DEke"><button class="clean-btn toggleButton_gllP toggleButtonDisabled_aARS" type="button" disabled="" title="Switch between dark and light mode (currently light mode)" aria-label="Switch between dark and light mode (currently light mode)" aria-live="polite" aria-pressed="false"><svg viewBox="0 0 24 24" width="24" height="24" class="lightToggleIcon_pyhR"><path fill="currentColor" d="M12,9c1.65,0,3,1.35,3,3s-1.35,3-3,3s-3-1.35-3-3S10.35,9,12,9 M12,7c-2.76,0-5,2.24-5,5s2.24,5,5,5s5-2.24,5-5 S14.76,7,12,7L12,7z M2,13l2,0c0.55,0,1-0.45,1-1s-0.45-1-1-1l-2,0c-0.55,0-1,0.45-1,1S1.45,13,2,13z M20,13l2,0c0.55,0,1-0.45,1-1 s-0.45-1-1-1l-2,0c-0.55,0-1,0.45-1,1S19.45,13,20,13z M11,2v2c0,0.55,0.45,1,1,1s1-0.45,1-1V2c0-0.55-0.45-1-1-1S11,1.45,11,2z M11,20v2c0,0.55,0.45,1,1,1s1-0.45,1-1v-2c0-0.55-0.45-1-1-1C11.45,19,11,19.45,11,20z M5.99,4.58c-0.39-0.39-1.03-0.39-1.41,0 c-0.39,0.39-0.39,1.03,0,1.41l1.06,1.06c0.39,0.39,1.03,0.39,1.41,0s0.39-1.03,0-1.41L5.99,4.58z M18.36,16.95 c-0.39-0.39-1.03-0.39-1.41,0c-0.39,0.39-0.39,1.03,0,1.41l1.06,1.06c0.39,0.39,1.03,0.39,1.41,0c0.39-0.39,0.39-1.03,0-1.41 L18.36,16.95z M19.42,5.99c0.39-0.39,0.39-1.03,0-1.41c-0.39-0.39-1.03-0.39-1.41,0l-1.06,1.06c-0.39,0.39-0.39,1.03,0,1.41 s1.03,0.39,1.41,0L19.42,5.99z M7.05,18.36c0.39-0.39,0.39-1.03,0-1.41c-0.39-0.39-1.03-0.39-1.41,0l-1.06,1.06 c-0.39,0.39-0.39,1.03,0,1.41s1.03,0.39,1.41,0L7.05,18.36z"></path></svg><svg viewBox="0 0 24 24" width="24" height="24" class="darkToggleIcon_wfgR"><path fill="currentColor" d="M9.37,5.51C9.19,6.15,9.1,6.82,9.1,7.5c0,4.08,3.32,7.4,7.4,7.4c0.68,0,1.35-0.09,1.99-0.27C17.45,17.19,14.93,19,12,19 c-3.86,0-7-3.14-7-7C5,9.07,6.81,6.55,9.37,5.51z M12,3c-4.97,0-9,4.03-9,9s4.03,9,9,9s9-4.03,9-9c0-0.46-0.04-0.92-0.1-1.36 c-0.98,1.37-2.58,2.26-4.4,2.26c-2.98,0-5.4-2.42-5.4-5.4c0-1.81,0.89-3.42,2.26-4.4C12.92,3.04,12.46,3,12,3L12,3z"></path></svg></button></div><div class="navbarSearchContainer_Bca1"><button type="button" class="DocSearch DocSearch-Button" aria-label="Search (Command+K)"><span class="DocSearch-Button-Container"><svg width="20" height="20" class="DocSearch-Search-Icon" viewBox="0 0 20 20" aria-hidden="true"><path d="M14.386 14.386l4.0877 4.0877-4.0877-4.0877c-2.9418 2.9419-7.7115 2.9419-10.6533 0-2.9419-2.9418-2.9419-7.7115 0-10.6533 2.9418-2.9419 7.7115-2.9419 10.6533 0 2.9419 2.9418 2.9419 7.7115 0 10.6533z" stroke="currentColor" fill="none" fill-rule="evenodd" stroke-linecap="round" stroke-linejoin="round"></path></svg><span class="DocSearch-Button-Placeholder">Search</span></span><span class="DocSearch-Button-Keys"></span></button></div></div></div><div role="presentation" class="navbar-sidebar__backdrop"></div></nav><div id="__docusaurus_skipToContent_fallback" class="main-wrapper mainWrapper_z2l0"><div class="docsWrapper_hBAB"><button aria-label="Scroll back to top" class="clean-btn theme-back-to-top-button backToTopButton_sjWU" type="button"></button><div class="docRoot_UBD9"><aside class="theme-doc-sidebar-container docSidebarContainer_YfHR"><div class="sidebarViewport_aRkj"><div class="sidebar_njMd"><nav aria-label="Docs sidebar" class="menu thin-scrollbar menu_SIkG"><ul class="theme-doc-sidebar-menu menu__list"><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-1 menu__list-item"><a class="menu__link" href="/docs/reference">Introduction</a></li><li class="theme-doc-sidebar-item-category theme-doc-sidebar-item-category-level-1 menu__list-item"><div class="menu__list-item-collapsible"><a class="menu__link">Basics</a></div><ul style="display:block;overflow:visible;height:auto" class="menu__list"><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/entities">Entities</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/entity-types">Entity types</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/catalogs">Catalogs</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/service-groups">Groups</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/external-docs">External documentation</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/dependencies">Dependencies</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/ownership">Ownership</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/custom-data">Custom data</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/deploys">Deploys</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/basics/scorecards">Scorecards</a></li></ul></li><li class="theme-doc-sidebar-item-category theme-doc-sidebar-item-category-level-1 menu__list-item"><div class="menu__list-item-collapsible"><a class="menu__link menu__link--sublist menu__link--active" href="/docs/reference/integrations">Integrations</a><button aria-label="Collapse sidebar category &#x27;Integrations&#x27;" aria-expanded="true" type="button" class="clean-btn menu__caret"></button></div><ul style="display:block;overflow:visible;height:auto" class="menu__list"><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/argocd">ArgoCD</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link menu__link--active" aria-current="page" tabindex="0" href="/docs/reference/integrations/aws">AWS</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/azureactivedirectory">Azure Active Directory</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/azuredevops">Azure DevOps</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/azureresources">Azure Resources</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/bambooHR">BambooHR</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/bitbucket">Bitbucket</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/bugsnag">BugSnag</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/buildkite">Buildkite</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/checkmarx">Checkmarx</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/circleci">CircleCI</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/clickup">ClickUp</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/codecov">Codecov</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/coralogix">Coralogix</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/datadog">Datadog</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/dynatrace">Dynatrace</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/firehydrant">FireHydrant</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/github">GitHub</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/gitlab">GitLab</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/google">Google</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/grafana">Grafana</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/incidentio">incident.io</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/instana">Instana</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/jenkins">Jenkins</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/jira">Jira</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/kubernetes">Kubernetes</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/launchdarkly">LaunchDarkly</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/lightstep">Lightstep</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/mend">Mend</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/microsoftteams">Microsoft Teams</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/newrelic">New Relic</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/okta">Okta</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/opsgenie">Opsgenie</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/pagerduty">PagerDuty</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/prometheus">Prometheus</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/rollbar">Rollbar</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/sentry">Sentry</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/servicenow">ServiceNow</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/slack">Slack</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/snyk">Snyk</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/sonarqube">SonarQube</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/splunk-observability">Splunk Observability Cloud (SignalFx)</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/splunk">Splunk On-Call (VictorOps)</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/sumologic">Sumo Logic</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/veracode">Veracode</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/wiz">Wiz</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/workday">Workday</a></li><li class="theme-doc-sidebar-item-link theme-doc-sidebar-item-link-level-2 menu__list-item"><a class="menu__link" tabindex="0" href="/docs/reference/integrations/xmatters">xMatters</a></li></ul></li></ul></nav></div></div></aside><main class="docMainContainer_TBSr"><div class="container padding-top--md padding-bottom--lg"><div class="row"><div class="col docItemCol_xLCN"><div class="docItemContainer_jfFK"><article><nav class="theme-doc-breadcrumbs breadcrumbsContainer_Z_bl" aria-label="Breadcrumbs"><ul class="breadcrumbs" itemscope="" itemtype="https://schema.org/BreadcrumbList"><li class="breadcrumbs__item"><a aria-label="Home page" class="breadcrumbs__link" href="/"><svg viewBox="0 0 24 24" class="breadcrumbHomeIcon_YNFT"><path d="M10 19v-5h4v5c0 .55.45 1 1 1h3c.55 0 1-.45 1-1v-7h1.7c.46 0 .68-.57.33-.87L12.67 3.6c-.38-.34-.96-.34-1.34 0l-8.36 7.53c-.34.3-.13.87.33.87H5v7c0 .55.45 1 1 1h3c.55 0 1-.45 1-1z" fill="currentColor"></path></svg></a></li><li itemscope="" itemprop="itemListElement" itemtype="https://schema.org/ListItem" class="breadcrumbs__item"><a class="breadcrumbs__link" itemprop="item" href="/docs/reference/integrations"><span itemprop="name">Integrations</span></a><meta itemprop="position" content="1"></li><li itemscope="" itemprop="itemListElement" itemtype="https://schema.org/ListItem" class="breadcrumbs__item breadcrumbs__item--active"><span class="breadcrumbs__link" itemprop="name">AWS</span><meta itemprop="position" content="2"></li></ul></nav><div class="tocCollapsible_ETCw theme-doc-toc-mobile tocMobile_ITEo"><button type="button" class="clean-btn tocCollapsibleButton_TO0P">On this page</button></div><div class="theme-doc-markdown markdown"><header><h1>AWS</h1></header><div class="row"><div class="col col--12 markdown"><div id="tailwind"><div class="mb-3"><span class="badge badge--secondary margin-right--md">Catalog</span><span class="badge badge--secondary margin-right--md">Discovery</span></div></div> <p><a href="https://aws.amazon.com/" target="_blank" rel="noopener noreferrer">Amazon Web Services (AWS)</a> provides on-demand cloud computing platforms and APIs.</p> <p>Integrating Cortex with AWS allows you to:</p> <ul> <li>Track AWS entities in the catalog</li> <li>Automatically discover and track ownership of AWS entities and dependencies<!-- --> <ul> <li>You can also <a href="#enable-automatic-discovery-of-aws-entities">enable auto-import</a> of any discovered entities of known types.</li> </ul> </li> <li>Create <a href="#scorecards-and-cql">Scorecards</a> that track progress and drive alignment on projects involving your AWS resources</li> </ul> <p>If you are on a self-hosted Cortex instance, see the <a href="/docs/self-managed/guides/aws-setup">On-premises AWS setup page</a>.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="how-to-configure-aws-with-cortex">How to configure AWS with Cortex<a href="#how-to-configure-aws-with-cortex" class="hash-link" aria-label="Direct link to How to configure AWS with Cortex" title="Direct link to How to configure AWS with Cortex">​</a></h2> <div class="theme-admonition theme-admonition-caution admonition_xJq3 alert alert--warning"><div class="admonitionHeading_Gvgb"><span class="admonitionIcon_Rf37"><svg viewBox="0 0 16 16"><path fill-rule="evenodd" d="M8.893 1.5c-.183-.31-.52-.5-.887-.5s-.703.19-.886.5L.138 13.499a.98.98 0 0 0 0 1.001c.193.31.53.501.886.501h13.964c.367 0 .704-.19.877-.5a1.03 1.03 0 0 0 .01-1.002L8.893 1.5zm.133 11.497H6.987v-2.003h2.039v2.003zm0-3.004H6.987V5.987h2.039v4.006z"></path></svg></span>caution</div><div class="admonitionContent_BuS1"><p>If you do not see the settings page you&#x27;re looking for, you may not have permission to access that page. Please contact your admin for assistance.</p></div></div> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-1-configure-the-integration-in-cortex">Step 1: Configure the integration in Cortex<a href="#step-1-configure-the-integration-in-cortex" class="hash-link" aria-label="Direct link to Step 1: Configure the integration in Cortex" title="Direct link to Step 1: Configure the integration in Cortex">​</a></h3> <ol> <li>In Cortex, navigate to the <a href="https://app.getcortexapp.com/admin/settings/aws" target="_blank" rel="noopener noreferrer">AWS settings page</a>:<!-- --> <ol> <li>In Cortex, click your avatar in the lower left corner, then click <strong>Settings</strong>.</li> <li>Under &quot;Integrations&quot;, click <strong>AWS</strong>.</li> </ol> </li> <li>Click <strong>Add AWS configuration</strong>.</li> <li>In the modal, the JSON configuration, Cortex AWS account ID, and External ID are displayed. Keep this browser window open, as you will need these in the next steps.</li> </ol> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-2-set-up-an-iam-policy-in-aws">Step 2: Set up an IAM policy in AWS<a href="#step-2-set-up-an-iam-policy-in-aws" class="hash-link" aria-label="Direct link to Step 2: Set up an IAM policy in AWS" title="Direct link to Step 2: Set up an IAM policy in AWS">​</a></h3> <p>For each account:</p> <ol> <li>Log in to your AWS Management Console and open the <a href="https://console.aws.amazon.com/iam/" target="_blank" rel="noopener noreferrer">IAM console</a>.</li> <li>Click <strong>Policies</strong>, then choose <strong>Create policy</strong>.</li> <li>Switch to the JSON editor. Copy the JSON starting policy from Cortex, and paste it into the JSON editor.<!-- --> <ul> <li>This policy allows Cortex to list all resources, resource types, and resource tags.</li> <li>If you are pulling in ECS resources, add the following actions to the JSON policy:</li> </ul> <div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">&quot;rds:Describe*&quot;,</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">&quot;rds:List*&quot;,</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">&quot;s3:Describe*&quot;,</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">&quot;s3:List*&quot;</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div> </li> <li>For each resource type that you want to import into Cortex, add policies for reading that type of AWS resource.<!-- --> <ul> <li>For example, if you want to import resources of type &quot;AWS::IAM::Role&quot;, we&#x27;ll need to have permission to &quot;iam<!-- -->:ListRoles<!-- -->&quot;, &quot;iam<!-- -->:ListAttachedRolePolicies<!-- -->&quot;, &quot;iam<!-- -->:GetRole<!-- -->&quot;, and &quot;iam<!-- -->:ListRolePolicies<!-- -->&quot;. Because this is a dynamic feature, Cortex does not automatically determine this. One option is to start with <a href="https://docs.aws.amazon.com/aws-managed-policy/latest/reference/ReadOnlyAccess.html" target="_blank" rel="noopener noreferrer">ReadOnlyAccess permissions</a> and remove sensitive permissions as deemed necessary.</li> </ul> </li> <li>Click <strong>Review Policy</strong>, enter a name, then click <strong>Create Policy</strong>.</li> </ol> <p>See the AWS documentation for more information: <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_create-console.html" target="_blank" rel="noopener noreferrer">Create IAM policies</a>.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-3-create-a-role-in-aws">Step 3: Create a role in AWS<a href="#step-3-create-a-role-in-aws" class="hash-link" aria-label="Direct link to Step 3: Create a role in AWS" title="Direct link to Step 3: Create a role in AWS">​</a></h3> <p>This section is specific to cloud-based Cortex accounts. If you are on a self-hosted Cortex instance, please see <a href="/docs/self-managed/guides/aws-setup">the AWS account setup guide for self-hosted Cortex</a>.</p> <ol> <li>In AWS, navigate to <strong>Roles &gt; Create Role</strong>.</li> <li>For the trusted entity type, select <strong>Another AWS account</strong>.</li> <li>In the <strong>Account ID</strong> field, enter the Cortex AWS account ID that was displayed in Cortex in the earlier steps.</li> <li>Click <strong>Require External ID</strong>, then enter the Cortex external ID that was displayed in Cortex in the earlier steps.</li> <li>Click <strong>Next</strong>.</li> <li>Select your newly created policy, and click <strong>Next</strong>.</li> <li>Enter a name for your role. Optionally, configure tags. When you are finished, click <strong>Create Role</strong>.</li> <li>Search for your new role in the list and copy its name. You will need this in the next steps.</li> <li>In the upper right corner of AWS, click your name. In the dropdown that appears, copy your AWS account ID. You will need these in the next steps.</li> </ol> <p>Note that if you use multiple AWS accounts, they will share a common rotatable <code>externalId</code>.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-4-finish-the-configuration-in-cortex">Step 4: Finish the configuration in Cortex<a href="#step-4-finish-the-configuration-in-cortex" class="hash-link" aria-label="Direct link to Step 4: Finish the configuration in Cortex" title="Direct link to Step 4: Finish the configuration in Cortex">​</a></h3> <ol> <li>Navigate back to the browser window containing your <a href="https://app.getcortexapp.com/admin/settings/aws" target="_blank" rel="noopener noreferrer">Cortex AWS settings page</a>.</li> <li>Configure the AWS integration form:<!-- --> <ul> <li><strong>Account ID</strong>: Enter the AWS account ID you obtained in the previous steps.</li> <li><strong>IAM role</strong>: Enter the role name you obtained in the previous steps.</li> </ul> </li> <li>Click <strong>Save</strong>.</li> </ol> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="step-5-resource-types-setup">Step 5: Resource types setup<a href="#step-5-resource-types-setup" class="hash-link" aria-label="Direct link to Step 5: Resource types setup" title="Direct link to Step 5: Resource types setup">​</a></h3> <p>Cortex will pull all the types you included in the IAM policy under the <strong>Cloud Control types</strong> field in the Settings section. If resource types aren&#x27;t appearing in the list, there is likely a permission issue, and the role isn’t set up to discover Cloud Control types. Make sure that &quot;cloudformation<!-- -->:ListTypes<!-- -->&quot;, &quot;cloudformation<!-- -->:ListResources<!-- -->&quot;, and &quot;cloudformation<!-- -->:GetResource<!-- -->&quot; are added to the IAM policy, so Cortex can pull the list of all available types from AWS.</p> <p>To select your cloud control types:</p> <ol> <li>In the <strong>Cloud control types</strong> field, select the types you want Cortex to discover/import.</li> <li>Click <strong>Save cloud control types</strong>.</li> </ol> <p>Some Cloud Control types are not currently supported. If the type you&#x27;re looking to import is in the list, please reach out to <a href="mailto:support@cortex.io" target="_blank" rel="noopener noreferrer">support@cortex.io</a> to submit a feature request.</p> <div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">AWS::ApiGateway::DocumentationVersion</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::ApiGateway::Step</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::CloudFormation::ResourceVersion</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::CustomerProfiles::Integration</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::CustomerProfiles::ObjectType</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::EC2::TransitGatewayMulticastGroupMember</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::EC2::TransitGatewayMulticastGroupSource</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::ECS::TaskSet</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::ElasticLoadBalancingV2::Listener</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::ElasticLoadBalancingV2::ListenerRule</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::Glue::Attach::SchemaVersion</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::Glue::Attach::SchemaVersionMetadata</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::IoTSiteWise::AccessPolicy</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::IoTSiteWise::Dashboard</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::IoTSiteWise::Project</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::Kendra::DataSource</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::Kendra::Faq</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::MediaConnect::FlowEntitlement</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::MediaConnect::FlowOutput</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::MediaConnect::FlowSource</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::MediaConnect::FlowVpcInterface</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::MediaPackage::Asset</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::MediaPackage::PackagingConfiguration</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::NetworkFirewall::LoggingConfiguration</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::QuickSight::Analysis</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::QuickSight::Dashboard</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::QuickSight::DataSet</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::QuickSight::DataSource</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::QuickSight::Template</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::QuickSight::Theme</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::RDS::DBProxyTargetGroup</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::S3Outposts::AccessPoint</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::S3Outposts::Bucket</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::SSO::Assignment</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::SSO::InstanceAccessControlAttributeConfiguration</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain">AWS::SSO::PermissionSet</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="how-to-connect-cortex-entities-to-aws">How to connect Cortex entities to AWS<a href="#how-to-connect-cortex-entities-to-aws" class="hash-link" aria-label="Direct link to How to connect Cortex entities to AWS" title="Direct link to How to connect Cortex entities to AWS">​</a></h2> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="enable-automatic-import-of-aws-entities">Enable automatic import of AWS entities<a href="#enable-automatic-import-of-aws-entities" class="hash-link" aria-label="Direct link to Enable automatic import of AWS entities" title="Direct link to Enable automatic import of AWS entities">​</a></h3> <p>You can configure automatic import from AWS:</p> <ol> <li>In Cortex, navigate to the <a href="https://app.getcortexapp.com/admin/settings/entities" target="_blank" rel="noopener noreferrer">Entities Settings page</a>.</li> <li>Next to <strong>Auto import from AWS, Azure, and/or Google Cloud</strong>, click the toggle to enable the import.<br> <img decoding="async" loading="lazy" alt="Enable auto discovery of entities" src="/assets/images/auto-import-entities-234997ee87ee91d088ef686558fbc3db.jpeg" width="1540" height="296" class="img_ev3q"></li> </ol> <p>If you do not have automatic import enabled, you can <a href="#import-entities-from-aws">manually import</a>.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="limit-discovery-to-specific-regions">Limit discovery to specific regions<a href="#limit-discovery-to-specific-regions" class="hash-link" aria-label="Direct link to Limit discovery to specific regions" title="Direct link to Limit discovery to specific regions">​</a></h3> <p>By default, Cortex will search for resources across all AWS regions, but you can limit that to specific regions in the <a href="https://app.getcortexapp.com/admin/settings/aws" target="_blank" rel="noopener noreferrer">Cortex AWS settings page</a>.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="import-entities-from-aws">Import entities from AWS<a href="#import-entities-from-aws" class="hash-link" aria-label="Direct link to Import entities from AWS" title="Direct link to Import entities from AWS">​</a></h3> <p>You can manually import entities from <!-- -->AWS<!-- -->:</p> <ol> <li>In the main nav of Cortex, click <strong>Catalogs &gt; All entities</strong>.</li> <li>On the right side of the Entities page, click <strong>Import entities</strong>.</li> <li>Select the entity type.</li> <li>On the &quot;Import entities&quot; page, select <strong>AWS</strong>.</li> <li>A list of discovered entities will appear. Click an entity to add it.<!-- --> <ul> <li>If your expected entities do not appear, click <strong>Sync entities</strong> in the upper left corner of the &quot;Import entities&quot; page.</li> </ul> </li> <li>When you are finished adding entities, click <strong>Add</strong>.</li> </ol> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="discover-dependencies-for-aws">Discover dependencies for AWS<a href="#discover-dependencies-for-aws" class="hash-link" aria-label="Direct link to Discover dependencies for AWS" title="Direct link to Discover dependencies for AWS">​</a></h3> <p>Cortex automatically discovers dependencies between your services and resources by scanning for resources with specific AWS tags. By default, a service will have dependencies on any Cortex resource that has a corresponding AWS resource with <a href="https://docs.aws.amazon.com/tag-editor/latest/userguide/tagging.html" target="_blank" rel="noopener noreferrer">AWS tag</a> key = &quot;service&quot; and tag value = the service&#x27;s Cortex tag. In your Cortex settings under the AWS integration section, you can customize the tag key names, or leave them blank to use &quot;service&quot; as the key name.</p> <h4 class="anchor anchorWithStickyNavbar_LWe7" id="use-keyvalue-pairs-in-the-entity-descriptor-for-discovery">Use key/value pairs in the entity descriptor for discovery<a href="#use-keyvalue-pairs-in-the-entity-descriptor-for-discovery" class="hash-link" aria-label="Direct link to Use key/value pairs in the entity descriptor for discovery" title="Direct link to Use key/value pairs in the entity descriptor for discovery">​</a></h4> <p>You can also use explicit tag key/value pairs in the <code>x-cortex-dependency</code> block for AWS dependency discovery. Instead of making a service depend on a resource based on service tags, Cortex will make a service depend on a resource if any of the resource&#x27;s AWS tags match the explicitly defined key/value pairs in the service&#x27;s <code>x-cortex-dependency</code> block. For example, the service below will have dependencies on any AWS resource with tag (key = <code>aws:cloudformation:my-key-1</code>, value = <code>arn:aws:cloudformation:my-region:my-value-1</code>) or tag (key = <code>aws:cloudformation:my-key-2</code>, value = <code>arn:aws:cloudformation:my-region:my-value-2</code>).</p> <div class="language-yaml codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-yaml codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token key atrule" style="color:#00a4db">x-cortex-dependency</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">aws</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">tags</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">key</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> my</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">key</span><span class="token punctuation" style="color:#393A34">-</span><span class="token number" style="color:#36acaa">1</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">value</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> my</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">value</span><span class="token punctuation" style="color:#393A34">-</span><span class="token number" style="color:#36acaa">1</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">key</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> my</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">key</span><span class="token punctuation" style="color:#393A34">-</span><span class="token number" style="color:#36acaa">2</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">value</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> my</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">value</span><span class="token punctuation" style="color:#393A34">-</span><span class="token number" style="color:#36acaa">2</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">key</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> </span><span class="token string" style="color:#e3116c">&quot;aws:cloudformation:my-key-1&quot;</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">value</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> </span><span class="token string" style="color:#e3116c">&quot;arn:aws:cloudformation:my-region:my-value-1&quot;</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">key</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> </span><span class="token string" style="color:#e3116c">&quot;aws:cloudformation:my-key-2&quot;</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">value</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> </span><span class="token string" style="color:#e3116c">&quot;arn:aws:cloudformation:my-region:my-value-2&quot;</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div> <p>For more information on dependencies, see the <a href="/docs/reference/basics/dependencies">Dependencies documentation</a>.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="discover-ownership-for-aws">Discover ownership for AWS<a href="#discover-ownership-for-aws" class="hash-link" aria-label="Direct link to Discover ownership for AWS" title="Direct link to Discover ownership for AWS">​</a></h3> <p>Cortex can automatically discover ownership for your AWS resources. To enable this, make sure that your AWS resources have a tag matching the <code>x-cortex-tag</code> of the corresponding Cortex team and enable the “Sync ownership from AWS” toggle in the Settings page. By default, we look for the <code>owner</code> tag. You can also customize the tag key name.</p> <div class="theme-admonition theme-admonition-caution admonition_xJq3 alert alert--warning"><div class="admonitionHeading_Gvgb"><span class="admonitionIcon_Rf37"><svg viewBox="0 0 16 16"><path fill-rule="evenodd" d="M8.893 1.5c-.183-.31-.52-.5-.887-.5s-.703.19-.886.5L.138 13.499a.98.98 0 0 0 0 1.001c.193.31.53.501.886.501h13.964c.367 0 .704-.19.877-.5a1.03 1.03 0 0 0 .01-1.002L8.893 1.5zm.133 11.497H6.987v-2.003h2.039v2.003zm0-3.004H6.987V5.987h2.039v4.006z"></path></svg></span>caution</div><div class="admonitionContent_BuS1"><p>Cortex syncs ownership from AWS every day at 6 am UTC.</p></div></div> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="editing-the-entity-descriptor">Editing the entity descriptor<a href="#editing-the-entity-descriptor" class="hash-link" aria-label="Direct link to Editing the entity descriptor" title="Direct link to Editing the entity descriptor">​</a></h3> <p>You can associate a Cortex entity with one or more AWS entities. For certain AWS resource types, Cortex will display those AWS entities&#x27; metadata on the Cortex entity page.</p> <div class="language-yaml codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-yaml codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token key atrule" style="color:#00a4db">x-cortex-infra</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">aws</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">arns</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> arn</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">aws</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">rds</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">us</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">east</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">1</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">229540587644</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">cluster</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">alpha</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> arn</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">aws</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">rds</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">us</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">east</span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain">1</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">229540587644</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">cluster</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain">bravo</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div> <h4 class="anchor anchorWithStickyNavbar_LWe7" id="multiple-ecs-services-on-a-single-entity">Multiple ECS services on a single entity<a href="#multiple-ecs-services-on-a-single-entity" class="hash-link" aria-label="Direct link to Multiple ECS services on a single entity" title="Direct link to Multiple ECS services on a single entity">​</a></h4> <p>You can associate a Cortex entity with multiple ECS services:</p> <div class="language-yaml codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-yaml codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token key atrule" style="color:#00a4db">x-cortex-infra</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">aws</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">ecs</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"></span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">clusterArn</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> abcd</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">serviceArn</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> efgh</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token punctuation" style="color:#393A34">-</span><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">clusterArn</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> stuv</span><br></span><span class="token-line" style="color:#393A34"><span class="token plain"> </span><span class="token key atrule" style="color:#00a4db">serviceArn</span><span class="token punctuation" style="color:#393A34">:</span><span class="token plain"> wxyz</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div> <p>The values for clusterArn and serviceArn are defined in <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html" target="_blank" rel="noopener noreferrer">ECS</a>.</p> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="discovery-audit">Discovery audit<a href="#discovery-audit" class="hash-link" aria-label="Direct link to Discovery audit" title="Direct link to Discovery audit">​</a></h3> <p>Cortex will pull recent changes from your AWS environment into the <a href="https://app.getcortexapp.com/admin/discovery" target="_blank" rel="noopener noreferrer">discovery audit</a>. Here, you can find new entities in AWS that have not been imported into the catalog - these will have the tag <strong>New AWS Resource</strong> - as well as entities in the catalog that no longer exist in AWS - these will have the tag <strong>AWS Resource Not Detected</strong>.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="searching-aws-entities-in-cortex">Searching AWS entities in Cortex<a href="#searching-aws-entities-in-cortex" class="hash-link" aria-label="Direct link to Searching AWS entities in Cortex" title="Direct link to Searching AWS entities in Cortex">​</a></h2> <p>The following keys are supported when searching for your AWS entities in Cortex under <strong>Catalogs &gt; All Entities</strong>:</p> <ul> <li><code>aws-account-id</code> - Account ID number</li> <li><code>aws-account-name</code> - Account alias</li> <li><code>aws-region</code> - AWS region of the resource</li> <li><code>aws-type</code> - AWS type of the resource</li> <li><code>aws-name</code> - AWS name of the resource</li> <li><code>aws-identifier</code> - The primary identifier of a resource</li> <li><code>aws-secondary-identifier</code> - The secondary identifier of a resouce</li> </ul> <h3 class="anchor anchorWithStickyNavbar_LWe7" id="example-search-queries">Example search queries<a href="#example-search-queries" class="hash-link" aria-label="Direct link to Example search queries" title="Direct link to Example search queries">​</a></h3> <ul> <li><code>aws-type:&quot;AWS::EC2&quot; AND aws-region:&quot;us-west&quot;</code>: Search for entities of category EC2 in the any of us-west regions</li> <li><code>aws-account-id: &quot;234512324&quot;</code>: Search for all entities from the account 234512324</li> <li><code>aws-name:&quot;aws-identifier-of-resource&quot; AND aws-account-name:&quot;test-account&quot;</code>: Search for entity with identifier aws-identifier-of-resource in the account with alias test-account<br> <img decoding="async" loading="lazy" alt="Example search term in the search bar on the Entities page" src="/assets/images/example-aws-search-5527b0b0d4e4000f4685298b0728e029.jpg" width="1914" height="310" class="img_ev3q"></li> </ul> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="scorecards-and-cql">Scorecards and CQL<a href="#scorecards-and-cql" class="hash-link" aria-label="Direct link to Scorecards and CQL" title="Direct link to Scorecards and CQL">​</a></h2> <p></p><p>With the <!-- -->AWS<!-- --> integration, you can create Scorecard rules and write CQL queries based on <!-- -->AWS<!-- --> <!-- -->resources<!-- -->.</p><p>See more examples in the <a href="https://app.getcortexapp.com/admin/cql-explorer" target="_blank" rel="noopener noreferrer">CQL Explorer</a> in Cortex.</p><p></p> <details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>AWS details</b></summary><div><div class="collapsibleContent_i85q"><p>Get the AWS details for an entity</p><p><strong>Definition:</strong> <code>aws.details(): Object</code></p><details class="details_lb9f alert alert--info details_b_Ee" data-collapsed="true"><summary><b>Example</b></summary><div><div class="collapsibleContent_i85q"><p>In a Scorecard, you can create a rule to verify that an entity of type <code>lamda</code> has a correct function name:</p><div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">aws.details().resources.filter((resource) =&gt; resource.typeName == &quot;AWS::Lambda::Function&quot;).length &gt; 0</span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div><p>You could also create a rule to verify that an entity is not using deprecated runtimes:</p><div class="codeBlockContainer_Ckt0 theme-code-block" style="--prism-color:#393A34;--prism-background-color:#f6f8fa"><div class="codeBlockContent_biex"><pre tabindex="0" class="prism-code language-text codeBlock_bY9V thin-scrollbar" style="color:#393A34;background-color:#f6f8fa"><code class="codeBlockLines_e6Vv"><span class="token-line" style="color:#393A34"><span class="token plain">aws.details().resources.filter((resource) =&gt; resource.typeName == &quot;AWS::Lambda::Function&quot; and resource?.metadata?.get(&quot;Runtime&quot;)?.matchesIn(&quot;(python3\\.6|python2\\.7|dotnetcore2\\.1|ruby2\\.5|nodejs12\\.|nodejs10\\.|nodejs8\\.10|nodejs4\\.3|nodejs6\\.10|dotnetcore1\\.0|dotnetcore2\\.0|nodejs4\\.3-edge|nodejs$)&quot;)).length == 0 </span><br></span></code></pre><div class="buttonGroup__atx"><button type="button" aria-label="Copy code to clipboard" title="Copy" class="clean-btn"><span class="copyButtonIcons_eSgA" aria-hidden="true"><svg viewBox="0 0 24 24" class="copyButtonIcon_y97N"><path fill="currentColor" d="M19,21H8V7H19M19,5H8A2,2 0 0,0 6,7V21A2,2 0 0,0 8,23H19A2,2 0 0,0 21,21V7A2,2 0 0,0 19,5M16,1H4A2,2 0 0,0 2,3V17H4V3H16V1Z"></path></svg><svg viewBox="0 0 24 24" class="copyButtonSuccessIcon_LjdS"><path fill="currentColor" d="M21,7L9,19L3.5,13.5L4.91,12.09L9,16.17L19.59,5.59L21,7Z"></path></svg></span></button></div></div></div></div></div></details></div></div></details> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="background-sync">Background sync<a href="#background-sync" class="hash-link" aria-label="Direct link to Background sync" title="Direct link to Background sync">​</a></h2> <p>Cortex conducts a background sync of AWS integration details every day at 10 a.m. UTC, an ownership sync every day at 6 a.m. UTC. and a dependency sync every day at 11 p.m. UTC.</p> <h2 class="anchor anchorWithStickyNavbar_LWe7" id="still-need-help">Still need help?<a href="#still-need-help" class="hash-link" aria-label="Direct link to Still need help?" title="Direct link to Still need help?">​</a></h2> <p>The following are all the ways to get assistance from our customer engineering team. Please use the option that is best for your users:</p> <ul> <li>Email: <a href="mailto:help@cortex.io" target="_blank" rel="noopener noreferrer">help@cortex.io</a>, or open a support ticket in the in app Resource Center</li> <li>Chat: Available in the Resource Center</li> <li>Slack: Users with a connected Slack channel will have a workflow added to their account. From here, you can either @CortexTechnicalSupport or add a <code>:ticket:</code> reaction to a question in Slack, and the team will respond directly.</li> </ul> <p>Don’t have a Slack channel? Talk with your customer success manager.</p></div></div></div><div class="row"><div class="col col--12"></div></div></article><div class="row"><div class="col col--12"><nav class="pagination-nav docusaurus-mt-lg" aria-label="Docs pages"><a class="pagination-nav__link pagination-nav__link--prev" href="/docs/reference/integrations/argocd"><div class="pagination-nav__sublabel">Previous</div><div class="pagination-nav__label">ArgoCD</div></a><a class="pagination-nav__link pagination-nav__link--next" href="/docs/reference/integrations/azureactivedirectory"><div class="pagination-nav__sublabel">Next</div><div class="pagination-nav__label">Azure Active Directory</div></a></nav></div></div></div></div><div class="col col--3"><div class="tableOfContents_bqdL thin-scrollbar theme-doc-toc-desktop"><ul class="table-of-contents table-of-contents__left-border"><li><a href="#how-to-configure-aws-with-cortex" class="table-of-contents__link toc-highlight">How to configure AWS with Cortex</a><ul><li><a href="#step-1-configure-the-integration-in-cortex" class="table-of-contents__link toc-highlight">Step 1: Configure the integration in Cortex</a></li><li><a href="#step-2-set-up-an-iam-policy-in-aws" class="table-of-contents__link toc-highlight">Step 2: Set up an IAM policy in AWS</a></li><li><a href="#step-3-create-a-role-in-aws" class="table-of-contents__link toc-highlight">Step 3: Create a role in AWS</a></li><li><a href="#step-4-finish-the-configuration-in-cortex" class="table-of-contents__link toc-highlight">Step 4: Finish the configuration in Cortex</a></li><li><a href="#step-5-resource-types-setup" class="table-of-contents__link toc-highlight">Step 5: Resource types setup</a></li></ul></li><li><a href="#how-to-connect-cortex-entities-to-aws" class="table-of-contents__link toc-highlight">How to connect Cortex entities to AWS</a><ul><li><a href="#enable-automatic-import-of-aws-entities" class="table-of-contents__link toc-highlight">Enable automatic import of AWS entities</a></li><li><a href="#limit-discovery-to-specific-regions" class="table-of-contents__link toc-highlight">Limit discovery to specific regions</a></li><li><a href="#import-entities-from-aws" class="table-of-contents__link toc-highlight">Import entities from AWS</a></li><li><a href="#discover-dependencies-for-aws" class="table-of-contents__link toc-highlight">Discover dependencies for AWS</a></li><li><a href="#discover-ownership-for-aws" class="table-of-contents__link toc-highlight">Discover ownership for AWS</a></li><li><a href="#editing-the-entity-descriptor" class="table-of-contents__link toc-highlight">Editing the entity descriptor</a></li><li><a href="#discovery-audit" class="table-of-contents__link toc-highlight">Discovery audit</a></li></ul></li><li><a href="#searching-aws-entities-in-cortex" class="table-of-contents__link toc-highlight">Searching AWS entities in Cortex</a><ul><li><a href="#example-search-queries" class="table-of-contents__link toc-highlight">Example search queries</a></li></ul></li><li><a href="#scorecards-and-cql" class="table-of-contents__link toc-highlight">Scorecards and CQL</a></li><li><a href="#background-sync" class="table-of-contents__link toc-highlight">Background sync</a></li><li><a href="#still-need-help" class="table-of-contents__link toc-highlight">Still need help?</a></li></ul></div></div></div></div></main></div></div></div></div> </body> </html>

Pages: 1 2 3 4 5 6 7 8 9 10