Enabling AWS data connector as code

%3CLINGO-SUB%20id%3D%22lingo-sub-2836830%22%20slang%3D%22en-US%22%3EEnabling%20AWS%20data%20connector%20as%20code%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2836830%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3CBR%20%2F%3E%3CBR%20%2F%3EHas%20anyone%20succeeded%20enabling%20the%20AWS%20data%20connector%20as%20code%3F%20In%20this%20example%20(%3CA%20href%3D%22https%3A%2F%2Fgithub.com%2FAzure%2FAzure-Sentinel%2Fblob%2Fmaster%2FTools%2FSentinel-All-In-One%2FARMTemplates%2FLinkedTemplates%2FdataConnectors.json%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fgithub.com%2FAzure%2FAzure-Sentinel%2Fblob%2Fmaster%2FTools%2FSentinel-All-In-One%2FARMTemplates%2FLinkedTemplates%2FdataConnectors.json%3C%2FA%3E)%20other%20data%20connectors%20are%20enabled%20through%20code%2C%20but%20I%20am%20unsure%20how%20to%20%22add%20the%20role%22%20for%20the%20AWS%20data%20connector.%3CBR%20%2F%3E%3CBR%20%2F%3EAssume%20that%20the%20role%20is%20already%20created%20in%20the%20IAM%20of%20AWS%2C%20and%20I%20have%20the%20Role%20ARN%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2841392%22%20slang%3D%22en-US%22%3ERe%3A%20Enabling%20AWS%20data%20connector%20as%20code%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2841392%22%20slang%3D%22en-US%22%3E%3CP%3EI%20found%20a%20solution%20from%20this%20documentation%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Frest%2Fapi%2Fsecurityinsights%2Fdata-connectors%2Flist%23awscloudtraildataconnector%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Frest%2Fapi%2Fsecurityinsights%2Fdata-connectors%2Flist%23awscloudtraildataconnector%3C%2FA%3E%3CBR%20%2F%3E%3CBR%20%2F%3EI%20provided%20a%20snippet%20of%20the%20working%20bicep%20structure%2C%20in%20case%20anyone%20is%20interested.%20(awsRoleArn%20is%20provided%20as%20a%20parameter%20in%20this%20case)%3C%2FP%3E%3CP%3E%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22Larssen92_1-1634121785924.png%22%20style%3D%22width%3A%20400px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F317013iEF5FFFA2651656C8%2Fimage-size%2Fmedium%3Fv%3Dv2%26amp%3Bpx%3D400%22%20role%3D%22button%22%20title%3D%22Larssen92_1-1634121785924.png%22%20alt%3D%22Larssen92_1-1634121785924.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
New Contributor

Hi,

Has anyone succeeded enabling the AWS data connector as code? In this example (https://github.com/Azure/Azure-Sentinel/blob/master/Tools/Sentinel-All-In-One/ARMTemplates/LinkedTem...) other data connectors are enabled through code, but I am unsure how to "add the role" for the AWS data connector.

Assume that the role is already created in the IAM of AWS, and I have the Role ARN

1 Reply

I found a solution from this documentation https://docs.microsoft.com/en-us/rest/api/securityinsights/data-connectors/list#awscloudtraildatacon...

I provided a snippet of the working bicep structure, in case anyone is interested. (awsRoleArn is provided as a parameter in this case)

Larssen92_1-1634121785924.png