SmartDraw lets you import your AWS information to automatically generate a diagram. Learn more about that here.
To import and visualize your AWS resources within SmartDraw, the following are required:
- User in IAM with appropriate permissions set
- Access key for user. If you need a primer on how to set up access keys for users, read this article from AWS.
- Secret token for user
Here are the minimum permissions needed for the IAM user for the integration to work.
{
"Version": "2019-10-19",
"Statement": [
{
"Effect": "Allow",
"Action": [
"autoscaling:DescribeAutoScalingGroups",
"autoscaling:DescribeLaunchConfigurations",
"cloudfront:ListDistributions",
"ec2:DescribeInstances",
"ec2:DescribeNetworkAcls",
"ec2:DescribeSecurityGroups",
"ec2:DescribeSubnets",
"ec2:DescribeVolumes",
"ec2:DescribeVpcs",
"elasticloadbalancing:DescribeLoadBalancers",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:DescribeTargetHealth",
"iam:GetGroupPolicy",
"iam:GetPolicy",
"iam:GetPolicyVersion",
"iam:GetRolePolicy",
"iam:GetUserPolicy",
"iam:ListAttachedGroupPolicies",
"iam:ListAttachedRolePolicies",
"iam:ListAttachedUserPolicies",
"iam:ListGroupPolicies",
"iam:ListGroups",
"iam:ListGroupsForUser",
"iam:ListRolePolicies",
"iam:ListRoles",
"iam:ListUserPolicies",
"iam:ListUsers",
"rds:DescribeDBInstances",
"s3:ListAllMyBuckets",
"SNS:GetTopicAttributes",
"SNS:ListTopics",
"sqs:GetQueueAttributes",
"sqs:ListQueues",
"ssm:GetParameters"
],
"Resource": [
"*"
]
}
]
}