Account connection

Connecting your AWS account to Clumio involves deploying Clumio resources in your AWS account so that Clumio can connect to the selected AWS account and region, to perform SecureVault backup, and restore tasks.

Connect your AWS account using Clumio's CloudFormation or Terraform templates, or set up your AWS account integration manually.

Connecting to an AWS account is a one-time step. Clumio allows you to connect an account to multiple regions if required, using the Clumio CloudFormation or TerraForm templates. These templates are designed around the "least privileges" model following standard AWS Identity and Access Management (IAM) security guidelines. For information about supported regions, see AWS Regions supported by Clumio. Use the Clumio CloudFormation template or the Terraform template to connect accounts to multiple regions.

The CloudFormation template is used to create a stack set which is then deployed to your AWS account. Connecting through Terraform installs the Clumio Terraform template in the AWS account, provisioning the set of AWS resources in the account used by Clumio to perform backups and restores.

Connecting your AWS accounts to Clumio

The following high-level steps are needed to connect (onboard) an AWS account:

Prerequisites

Clumio CloudFormation and Terraform templates are designed around the "least privileges" model following standard AWS Identity and Access Management (IAM) security guidelines.

Before you connect your AWS environment, verify these permission requirements to ensure the connection process runs smoothly.

Connecting your account

1. Connect to an AWS account by specifying,
   1. the AWS account number and region or regions you want to connect
   2. the asset types to protect
   3. a region to deploy the stack set
   4. a stack set creation method and create the stack set.
2. Deploy Clumio using one of the following methods:
   1. Create a stack automatically using CloudFormation with the Create Stack wizard. Clumio recommends this method.
   2. Connect to an AWS account using the Terraform template.
   3. Create a stack manually, Clumio provides the required template and tokens. This method is useful if you want to review the template or if you are not the owner for all accounts.
   4. Manually configure the all permissions required to on-board your AWS account with Clumio. This method is useful when you have security requirements that require you to review the permission required by Clumio to protect your AWS assets.

Protecting your assets

• If this is your first time connecting to a data source of any kind, configure security settings for your Clumio account and invite users to Clumio.
• Create and configure a set of policies for the asset types you want to protect. Apply the polices to those assets using protection rules.