Skip to main content

Connect AWS account

Note

This page applies only if DoiT is NOT your cloud reseller. See Connect cloud account for more information.

DoiT Cloud Navigator: All tiers DoiT Cloud Solve: Enhanced and above

You can choose to be billed either via direct invoice from DoiT or via AWS Marketplace subscription. For the latter, you need to Subscribe through AWS Marketplace.

Required permission

You need the AdministratorAccess role on the AWS account that you want to connect.

Connect AWS account

To connect your AWS account to the DoiT Cloud Navigator:

  1. Sign in to the DoiT console.

  2. Select Amazon Web Services as the cloud provider to connect, or select Connect your AWS account on the Home page.

  3. Enter the AWS account ID that you want to connect. It should be of the AWS management account of your organization.

Create a Cost and Usage Report

To feed the DoiT console with AWS billing data, you need to create an AWS Cost and Usage Report (CUR):

  1. Sign in to the AWS Billing and Cost Management console.

  2. Create a new Cost & Usage report with the following settings:

    • Additional content: Include resource IDs, Split cost allocation data
    • Report data time granularity: Hourly
    • Compression type: GZIP (csv) or Parquet
  3. In the DoiT console, enter your S3 bucket name. DoiT reads CUR files exclusively from the specified bucket and automatically discovers new CUR files in it.

Grant permissions to DoiT console

DoiT provides an AWS CloudFormation template with an IAM JSON policy that grants necessary permissions to the DoiT console so that it can analyze your billing data.

  1. In the DoiT console, select Open AWS CloudFormation Console.

  2. In the AWS CloudFormation console, create a stack using the DoiT template (you can also download the template from the template URL).

    The template includes a managed policy (entity type: AWS::IAM::ManagedPolicy) with the following statements

    • Organizations: Allows DoiT to use the AWS Organizations service to get metadata about your AWS organization and accounts.
    • HealthKnownIssues: Allows DoiT to use AWS Health for issue management with your AWS Organization.
    • Finops
    • BillingBucket: Allows the DoiT billing pipeline to access S3 buckets.
    • BillingObject: Allows the DoiT billing pipeline to retrieve CUR files from S3 buckets.
    • Onboarding: Verifies the permissions are set correctly.
  3. Select Next to continue.

Confirm the Cost and Usage Report

Once the AWS account has been successfully connected, CUR files in the S3 bucket are validated:

  • Valid CURs are listed on the page. Currently, only one CUR is supported.

  • If none of the CURs is valid, the DoiT console displays why they are invalid so you can make corrections.

You can always select Refresh to validate CURs in the S3 bucket.

Subscribe through AWS Marketplace

This step applies if you prefer to be billed through the AWS Marketplace subscription. See Subscribe through AWS Marketplace for details.

AWS offboarding

See AWS offboarding process.

Interactive demo

Try out our interactive demo for a hands-on walk-through experience.

If the demo doesn't display properly, try expanding your browser window or opening the demo in a new tab.

What's next

After you successfully purchased the DoiT Cloud Navigator, we start importing your billing data and notify you when the data is available for Cloud Analytics and other DoiT features.