Skip to main content
Skip table of contents

Setup Monitoring For Multiple AWS Accounts

The following instructions will guide your team in setting up and configuring multiple AWS accounts for Dash compliance monitoring. Teams will have to provide permissions via Dash and CloudFormation to allow Dash to scan secondary AWS accounts.

What Will You Need?

  • AWS User With Administrator Permissions – (the CloudFormation template creates resources that require a higher permission set)

  • Existing Dash ComplyOps Platform in your AWS account 

  • About 5 minutes of time

Instructions

Previously, Dash ComplyOps used AWS Organizations to enable monitoring of multiple AWS accounts. This limited monitoring to only AWS Organization “master” accounts and “sub-accounts” under your AWS Organization.

v2.9.4 has implemented a new process for connecting and monitoring AWS accounts. Users installing a new version of Dash or clients updating or installing the new v2.9.4 application must ensure that they reconnect all AWS account monitoring using the new monitoring permissions

To connect one or more AWS accounts, take the following steps:

  1. In the Dash ComplyOps, navigate to Settings → Monitoring Settings

  2. The page should look like this:

3. Click the ‘Connect AWS Account’ button under AWS Accounts section. You will need to enter the following:

  • AWS Account Name - A name defined by your team to identify the account you are connecting to monitoring

  • AWS Account ID - Enter the AWS Account ID for the AWS account you want to connect to Dash monitoring. You can find this by logging into the account and clicking on the top right user dropdown.

  • Once you have entered the AWS Account Name and AWS Account ID, click “Setup”

4. You will be taken to AWS where you will need to login and grant Dash permission to scan this environment. In the new browser tab that just opened, please enter the password for the selected account.

5. After logging it, you will be redirected to the CloudFormation setup page. It has already preloaded with the correct CloudFormation template, using an S3 URL. 

6. Click the ‘Next‘ button.

7. On the subsequent page, click the ‘Next’ button again. There is nothing to change on this screen. 

8. On this page, you must select the checkbox, “I acknowledge that AWS CloudFormation might create IAM resources with custom names“.

Now click “Create Stack

9. The CloudFormation template is now under way. It may take a few minutes until the CloudFormation template completes successfully. You will then see the status CREATE_COMPLETE.

10. Now you can navigate back to the Dash Settings Page. Click the “Validate Connection” button.

  • The Dash application should recognize that you have connected the new AWS account to monitoring.

11. You can click the ‘Refresh AWS Environments’ to see updates to the connected accounts. After waiting a few seconds, you will now see that the environment if now validated. This means that scans are being ran on this environment.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close