Amazon Web Services
xAssets includes a built-in integration to import virtual machine instances from an Amazon Web Services (AWS) account. This page explains what the integration provides and how to configure it.
What the Integration Provides
The AWS integration pulls basic information on each EC2 instance in your AWS account into xAssets as asset records. This gives you visibility of your cloud infrastructure alongside on-premises assets.
For full hardware and software details on each instance, combine this integration with xAssets Network Discovery, which can scan the instances once they are registered in xAssets.
Prerequisites
- An AWS account with API access enabled
- An IAM user or role with permissions to describe EC2 instances (at minimum, the
ec2:DescribeInstancespermission) - Access to xAssets with permission to create credential packs
- The xAssets Batch Service must be running
Setup
Step 1: Create API Credentials in AWS
- Sign in to the AWS Management Console
- Navigate to IAM > Users (or create a dedicated service account)
- Generate an Access Key ID and Secret Access Key for the user
- Copy both values -- the Secret Access Key is only shown once
Step 2: Create a Credential Pack in xAssets
- Navigate to Discover > Prepare > Credentials
- Click Create Credentials
- Configure the credential pack as follows:
| Field | Value |
|---|---|
| Credential Type | Named Credentials |
| Collection Server | Application Server |
| Pack Name | AWS |
| Domain | The domain name of your AWS instance |
| Username | The Access Key ID from Step 1 |
| Password | The Secret Access Key from Step 1 |
- Save the credential pack
Step 3: Run the Integration
- Navigate to Discover > Integrations > Get data from Amazon Web Services
- Select the AWS credential pack
- The integration runs and creates one asset record per EC2 instance
Region Configuration
The integration defaults to the us-east-2 region and the ec2 service. To target a different AWS region, edit the transformation behind the menu item (accessible via Admin > Transformations) and modify the region parameter in the AMSX script.
Tip: If you have instances across multiple AWS regions, you can clone the transformation for each region, each with its own region setting, and schedule them all to run on the same schedule.
Related Articles
- Google Cloud — similar integration for Google Cloud Platform
- Azure Direct Integration — similar integration for Microsoft Azure
- Transformations Overview — understanding transformations