How to fix "ASSUME_ROLE" warning from AWS Organization

  • Updated

When using the AWS Organization integration workflow, you might be seeing a warning in the Inventory page -> AWS Organization for certain accounts labeled "ASSUME_ROLE". This indicates that your AWS child account is missing the proper vanta-auditor role required. 

Screenshot_2023-01-05_at_12.57.16_PM.png

 

Procedure:

  1. Navigate to the Integration page

  2. Under Amazon Web Services

  3. Click Manage

  4. Click Edit

  5. Follow step 1 to create the AWS policies and roles for each of the affected account

    1. Policy creation

    2. Role creation

    3. Repeat steps 1 and 2 for every account besides the management/root account

    4. Once complete, click next until the Configure scope page

    5. Click Done

Was this article helpful?

Have more questions? Submit a request