A CloudFormation (CFN) template describes your resources and dependencies so that you can run and configure them as a stack. You can run the AWS CFN template and create or update the CloudFormation stack by using either the AWS Management console or through the AWS Command Line Interface (AWS CLI).
To simplify creating the CloudFormation stack, Carbon Black Cloud provides a setup script that uses AWS CLI internally for running the CFN template.
You set up the script for each AWS region in the onboarded AWS account to stream events on management changes from your AWS account into the Carbon Black Cloud console. The setup script is a Bash/PowerShell script that uses a CloudFormation template describing the intended state of all the resources you must deploy in that AWS region. The stack implements and manages the outlined resources in the template as a single unit. For example, you can delete a collection of resources by deleting the stack. For more details, see Working with stacks.
Optionally, you can use AWS CloudShell to run the event setup script. The AWS CloudShell is a browser-based shell for interacting with your AWS resources directly from the AWS console. For details, see AWS CloudShell.
Prerequisites
- Become familiar with the following possible values for the
<ScriptURL>
per onboarding environment.Linux Windows https://prod.cwp.carbonblack.io/public-cloud/us/aws/shell/setup-cbc-event-stream.sh
https://prod.cwp.carbonblack.io/public-cloud/us/aws/powershell/setup-cbc-event-stream.ps1
https://prod.cwp.carbonblack.io/public-cloud/ap/aws/shell/setup-cbc-event-stream.sh
https://prod.cwp.carbonblack.io/public-cloud/ap/aws/powershell/setup-cbc-event-stream.ps1
https://prod.cwp.carbonblack.io/public-cloud/eu/aws/shell/setup-cbc-event-stream.sh
https://prod.cwp.carbonblack.io/public-cloud/eu/aws/powershell/setup-cbc-event-stream.ps1
https://prod.cwp.carbonblack.io/public-cloud/au/aws/shell/setup-cbc-event-stream.sh
https://prod.cwp.carbonblack.io/public-cloud/au/aws/powershell/setup-cbc-event-stream.ps
- Set the following access level permission and assign it to the API Key for executing the event stream setup script.
- Retrieve your API Secret Key and API ID credentials.
- Become familiar with installing the AWS CLI on your EC2 instance. For Linux installations, see Install or update to the latest version of the AWS CLI. For Windows installations, see Installing the AWS Tools for PowerShell on Windows.