Granting Site24x7 ReadOnly Access to AWS resources and services

How to provide ReadOnly access to your AWS resources via the AWS IAM console?

Grant access to your AWS account

Site24x7 makes programmatic API calls to your AWS resources to collect performance metrics and metadata. For this to occur, you (AWS account holder) need to grant access and connect your AWS account with Site24x7. An AWS account holder can grant access to Site24x7 through any of the below methods:
  1. Role ARN for cross-account access
  2. CloudFormation IAM role-based access
  3. AWS Control Tower lifecycle events-based access
  4. AWS IAM Identity Center-based access
  5. Delegated Admin-based access

Connect your AWS account with Site24x7 

Once done, Site24x7 will use the Role ARN to start monitoring.

Policies and permissions 

Site24x7 provides two options for IAM role permissions:
  1. AWS Managed ReadOnlyAccess Policy: The IAM role will be created with the ReadOnlyAccess policy, which is managed by AWS for all services.
  2. Site24x7 Custom Policy: The IAM role will be created with the inline policy formulated with read-only permissions required for Site24x7-supported services.
You can also create your own policy with specific permissions to monitor specific AWS resources. To learn more, please read our product documentation.

    • Related Articles

    • Accessing products via Site24x7

      You can seamlessly access ManageEngine CloudSpend and Site24x7’s sub-products, like Digital Risk Analyzer, StatusIQ, and Toolset, from within your Site24x7 web client. The product switcher , available at the top-right corner of the interface, lets ...

    • What are the common OAuth errors and how to solve them?

      While configuring OAuth,  here are a few errors that you might face. They are: Invalid Redirect URI - Error_invalid_redirect_uri Invalid Code - invalid_code OAuth Scope associated to the OAuth Access Token is disallowed. - error_code: 1120 Invalid ...

    • Sync Microsoft Entra ID users to Site24x7 via Zoho Directory

      If you want to sync your user data from Microsoft Azure AD to Site24x7, you can do it with Zoho Directory's conditional assignment feature. Once synced, you can easily add users in Site24x7 without requiring manual intervention. The users added to ...

    • Why are my resources not being discovered?

      When you cannot view the newly added Azure resources in your Azure monitor, you can check if Auto-discovery is disabled. If it is enabled, new resources will be added during auto-discovery. Manual triggering If your resource is not discovered, you ...

    • Necessary domains, ports, and IP addresses to be allowlisted to allow access through my firewall for the server monitoring agent

      The server monitoring agent uses one-way outbound HTTPS to communicate with the Site24x7 central server. Please provide access to the below ports and domains to facilitate this communication: Domains - dms.zoho.com (Device messaging system), ...