Before you add AWS to vRealize Business for Cloud, you need to configure an AWS account.

Note:

If you have upgraded vRealize Business for Cloud from a version prior to 6.1, you must reconfigure your AWS account.

  • You must have an AWS account name and account ID. For more information, see http://docs.aws.amazon.com/awsaccountbilling/latest/about/programaccess.html.

    Important:

    The account ID is a 12 digit number (for example 1234-1234-1234) that you can see after you log in to the Web portal of an AWS account https://portal.aws.amazon.com/gp/aws/manageYourAccount. Do not use hyphens when you attempt to add or update the AWS account in vRealize Business for Cloud.

  • You must have an access key and secret key for your AWS account. For more information, see http://docs.aws.amazon.com/general/latest/gr/managing-aws-access-keys.html.

  • For the paying accounts, you must create and configure the S3 bucket. For information about how to create and configure the S3 bucket, see http://docs.aws.amazon.com/awsaccountbilling/latest/aboutv2/billing-reports-gettingstarted-s3.html.

  • For the paying accounts, you must follow the programmatic billing access process after getting an access key and secret key so that you can build applications that reference your billing data from a CSV file stored in an Amazon S3 bucket. For more information about getting programmatic billing access, see http://docs.aws.amazon.com/awsaccountbilling/latest/about/programaccess.html.

  • For the paying accounts, you must enable detailed billing report with resources and tags. You can use the report to organize and track your AWS costs. To get the report, first sign up for programmatic billing access, and then opt for the report. AWS publishes the report as a ZIP file to the Amazon S3 bucket you specify for Programmatic Billing Access. AWS publishes the report several times each day. The files are stored in your designated bucket using the following naming convention. 123456789012-aws-billing-detailed-line-items-with-resources-and-tags-yyyy-mm.csv.zip, where 123456789012 is account ID, yyyy is year, mm is month.

    Note:

    During the current billing period (monthly), AWS generates an estimated report. The current month's file is overwritten throughout the billing period until a final report is generated at the end of the billing period, and then, a new file is created for the next billing period. The final reports for the previous months remain in the designated Amazon S3 bucket.

  • For the paying accounts, ensure that the AWS user has s3:Get*, s3:List*, ec2:Describe*, and cloudwatch:* permissions. You can add the inline policies and provide the required permissions. For example,

    {
    "Version": "2012-10-17", 
    "Statement": [
    {
    "Sid": "Stmt1418381123000",
    "Effect": "Allow",
    "Action": [
    "s3:Get*",
    "s3:List*"
    ],
    "Resource": [
    "arn:aws:s3:::*"
    ]
    }
    ]
    }
  • For paying and non-paying accounts, ensure that the AWS user has the ec2:Describe* and cloudwatch:* permissions. You can add the inline policies and provide the required permissions. For example,

    {
    "Version": "2012-10-17", 
    "Statement": [
    {
    "Sid": "Stmt1418206217000",
    "Effect": "Allow",
    "Action": [
    "ec2:Describe*",
    "cloudwatch:*"
    ],
    "Resource": [
    "*"
    ]
    }
    ]
    }
  • You can also tag your Amazon resources. Tags let you categorize your AWS resources in different ways, for example, by purpose, owner, or environment. When you apply tags to your AWS resources (for example, Amazon EC2 instances or Amazon S3 buckets), AWS generates the report as a comma-separated value (CSV) file with your usage and costs aggregated by your tags. You can apply tags that represent your business dimensions (such as cost centers, application names, or owners) to organize your costs across multiple services. Log into your account to activate the tags to appear in the report. When you select tag keys to include in your report, each key becomes an additional column and includes the value for each corresponding line item. You might use tags for more than just your report (for example, tags for security or operational reasons), and so, you can include or exclude individual tag keys for the report. After you apply tags, you can view the costs based on tags. For more information about tagging your Amazon resources, see http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html.

Note:

Verify that the bill is according to the format 123456789012-aws-billing-detailed-line-items-with-resources-and-tags-yyyy-mm.csv.zip are being generated in the S3 bucket that you have configured, and added the exact bucket name while adding the account in vRealize Business for Cloud.