Add AWS environments using CloudFormation
You can use the assistant to add AWS environments to Sophos Cloud Optix using AWS CloudFormation.
Introduction
When adding AWS environments the assistant prompts you to make choices and provide information. The assistant fills in the parameters needed to create the stack in AWS.
This document contains background information about the tasks you may need to complete, and the parameters used.
Collect information from your Sophos Cloud Optix console
The information is used to link the StackSet to your Sophos Cloud Optix accounts.
Before creating AWS CloudFormation StackSets you must collect information from your Sophos Cloud Optix account. This is used later in the AWS Create StackSet assistant.
Assign a role to the AWS account chosen as your master account
You must first choose an AWS account as your master account.
Choose an AWS account to be your master account. To assign the appropriate role to this account, do as follows:
Assign roles to each target member AWS account
You assign roles for the designated target member accounts.
This process does not add the AWS master account to Sophos Cloud Optix. It only adds the target member accounts. If you want to add the master account, you must do it separately.
To create an AWS CloudFormation StackSet in every target member account, follow these instructions for each account:
Configure CloudFormation StackSet in the master AWS account
To create the AWS CloudFormation StackSet do as follows:
Create CloudFormation StackSet
Use Sophos Cloud Optix information in the Create StackSet assistant.
Use the parameters you obtained earlier from your Sophos Cloud Optix account to fill in the fields in the AWS CloudFormation StackSet assistant. This links your StackSets to Sophos Cloud Optix.
Ensure you are signed into your chosen AWS master account and do as follows: