This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Automate Newly created cloud account in Prisma cloud

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Automate Newly created cloud account in Prisma cloud

BAdesina
L0 Member

‎02-21-2020 06:37 AM - last edited on ‎09-02-2020 10:59 AM by

Hi,

Can anyone direct me to a document or script that can be used to automate account onboarding whenever a new AWS account is created in the organisation. I have this on github but the seems to be the entire process of onboarding Prisma cloud;


https://github.com/PaloAltoNetworks/PrismaCFNOnboarding

Labels:
0 Likes Likes
3 REPLIES 3

FranciscoBreijo
L1 Bithead

‎03-23-2020 06:40 AM

Currently, there is no automated onboarding mechanism for AWS, which mimics our GCP capability.

 

This is in the works, but a timeframe has not been defined at this moment.

Respectfully Submitted,
Francisco Breijo
0 Likes Likes

BCastillo
L2 Linker

‎09-23-2022 09:43 AM

Hello,

 

Thank you for your question. Its been a while since you have asked but I wanted to make sure that I can answer this question for you.
Prisma Cloud now automatically updates your AWS Org by adding on the Cloud Accounts (child account) once the account has been added or created under your AWS Org. 

 

During the process of an AWS Org onboarding, on the Select Member Accounts section. Make sure to select all. This will include all member accounts under your organization to be added to Prisma Cloud every time you update your ORG with child accounts. This choice can also be changed later as well.

 

Please note that when you remove an account from your Organization, that will also update on Prisma Cloud as well.

Hope this helps.

 

Regards,

(1)

TommyHunt
L3 Networker

‎09-23-2022 11:02 AM

It's documented here. https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/connect-your-cloud-platform...

I like BCastillo's advice too.

Don't forget to deploy an AWS Managed StackSet to your AWS master account.

That StackSet will be an AWS CloudFormationTemplate containing the twistlock IAM user and policy.

The StackSet should be configured to deploy with the AWSStackSetAdministrativeRole.

Tommy Hunt AWS-CSA, Java-CEA, PMP, SAFe Program Consultant
thunt@citrusoft.org
https://www.citrusoft.org
(1)
  • 3621 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks