Onboard AWS to CloudHiro's cost optimization platform

The following guide will show you how to set up your account to allow CloudHiro to access it in a secure manner. We will create a separate role for CloudHiro.

Register to CloudHiro
1
2

Confirm the email you get and login

3

Go to ShowExternalID and copy the externalID for later use. If no external ID is shown, log out and login again.

Use CloudFormation Template
1

Login to your AWS account as an admin.

2

Creating a new CUR (Cost and usage report) and granting access to it:

  • When creating the CUR, make sure you are in us-east-1 (North-Virginia) region.
  • Use this link for new CUR
  • If you already have existing CUR -use this link. Please save the bucket-name and cur-name for later use.
3

Adding permissions to all accounts (including child accounts):

Go to create stacksets and enter in the "Amazon S3 url" the following JSON's:

Note: The first stackset will create "CloudHiro" role and the other two will add policies to the same role.

  • You will be asked for a parameter called ExternalID.Find it here.
  • Please enter "Primary Region" - This region will be the only region that the stackset will be deployed even if you will add more regions in the "Specify regions" section in the next page.
  • In the "Specify regions" section, specify at least one region. One of them must be the region you have entered in the "Primary Region" section. All other regions that you will enter will be ignored by design.
  • In "Maximum concurrent accounts - optional" change both sections to "percentage" and "100%"
4

Reserved Instances Management:

Make sure that "Reserved Instances and Savings Plans discount sharing preference" is enabled for all accounts and enabled by default. AWS → AWS billing → Billing preferences → "Reserved Instances and Savings Plans discount sharing preference".

That's it - We are all done!

Azure Onboarding

Get Started

GCP Onboarding

Get Started

OCI Onboarding

Get Started

Datadog Onboarding

Get Started

Connect via SSO

Connect