AWS Onboarding

Introduction

This guide provides an overview of onboarding the Xshield Cloud Connector to your AWS environment. Use the onboarding option that best matches your operational and security requirements.

Prerequisites

Before you begin, ensure you have:

• Active AWS account with administrative access
• An IAM principal (user/role) that can create and manage IAM roles and policies
• VPC Flow Logs enabled for the VPCs you want to monitor (recommended for traffic visibility)
• AWS X-Ray enabled for workloads where tracing visibility is desired (optional)
• Active Xshield account with access to the management portal

Onboarding Process

The steps below cover the initial process for connecting your AWS account to Xshield. After that, continue with one of the onboarding flows based on your operational and security requirements.

Step 1: Navigate to Cloud Connector

1. Log in to the Xshield management portal
2. Navigate to Sensors in the left navigation menu
3. Select Cloud Connector

Step 2: Start AWS Onboarding

1. Click Connect to begin onboarding.

   

2. Click Create Account next to AWS.

   

Step 3: Connect AWS Account

Choose one of the following onboarding paths to connect your AWS account:

Interactive Onboarding

Use interactive onboarding for a guided flow through the portal.

• AWS Interactive Onboarding

Script-based Onboarding

Use script-based onboarding when you want to deploy the required CloudFormation stack and permissions using a guided script.

• AWS Script-based Onboarding

Manual Onboarding

Use manual onboarding when you prefer to complete the onboarding steps directly in the AWS Console.

• AWS Manual Onboarding