FAQ: Amazon Credentials
Take a look at the following common questions and answers about using Amazon credentials with supported Trust Protection Platform integrations.
How do I create Amazon Credentials?
You create Amazon credentials the same way you create other credentials; but you'll need to provide some Amazon-specific configuration settings. See Creating Amazon credentials.
How do I edit my Amazon Credentials?
You edit Amazon credentials the same way you edit any other credential type in Aperture. Sign in to Aperture, and then click Inventory > Credentials to open the Credential inventory list. For more details, see Editing credentials.
Can I configure my Amazon credential to work with an EC2 instance?
Yes. Just set the source of your Amazon credential to EC2 Assigned Role. See Creating Amazon credentials.
Why can't I see the AWS EC2 Assigned Role option in the Source list?
As an added security measure, you must be a master administrator or have been added to AWS EC2 Role Authorized Identities by a master administrator to use the EC2 Assigned Role mode. Without this security control, any user would be able to use this mode without the ability of administrators to verify it. Master administrators can add non-master administrator user accounts, as well as groups in Policy Tree (Platforms tree > Platforms > AWS EC2 Role Authorized Identities tab). See Authorizing the use of EC2 Assigned Role for Amazon credentials.
Can I authenticate across multiple AWS accounts with my Amazon credential?
Yes, you can. If you have multiple AWS accounts—such as production accounts and testing or QA accounts—you can configure Trust Protection Platform to authenticate with multiple AWS accounts at once. See Authenticating to multiple AWS accounts using a single Amazon Credential.