Using the AWS Console to configure ProsperOps access for a Savings Analysis

This article assumes you are configuring ProsperOps access for a Savings Analysis.

  • Open a new browser tab, navigate to the AWS Console, and log in to the Management Account.
  • Return to the ProsperOps Console and click the Create IAM Role button.

⚠️  IMPORTANT NOTE: If you skip the step of clicking Create IAM Role and attempt to create a ProsperOps role manually, your role will be missing critical IAM configuration settings which will not work. Please do not skip this ☝️ step!!

  • You will be taken to the Create IAM Role page in the AWS Console with various ProsperOps non-permission role details (e.g. entity type, account ID, external ID) pre-populated. Click Next
  • We're going to add an Inline policy after we create the role, so just click Next.
  • Enter the following Role name (IAM role names are case sensitive so please enter EXACTLY as shown, ideally just copying the text below 😎 ):

  • Enter the following Description: 
Used by ProsperOps - Must remain in place for ProsperOps to function correctly. Email for assistance.
  • Click Create role.
  • Click on the newly created ProsperOps role to open the Role Summary screen then click on Create inline policy as shown.
  • Return to the ProsperOps Console and click the copy icon in the upper right corner of the policy window to copy the IAM policy to your clipboard.

  • Return to the AWS Console. Select the JSON tab, paste the IAM policy into the editor, then click Review policy
  • Enter the following policy Name:
  • Click Create policy.
  • A ProsperOps IAM role has now been created with the necessary least privilege policy permissions.
  • Return to the ProsperOps Console and click Validate Access.

  • Once access is validated, you are ready for a Savings Analysis! 🎊