Connect Your AWS Account
Learn how to securely link your AWS account with MilkStraw AI using cross-account roles and external IDs
Prerequisites
- An active MilkStraw AI account
- AWS account with permissions to create IAM roles and policies
- Access to the AWS Management Console
Connection Methods
We provide two methods to connect your AWS account. Choose the one that best suits your needs:
CloudFormation Setup
One-click setup using AWS CloudFormation. Fastest and recommended method.
Manual Setup
Step-by-step manual configuration for full control over the process.
CloudFormation Setup (Recommended)
Deploy Stack
Click the “Deploy” button in the MilkStraw AI dashboard to start the CloudFormation process.
Access Level
Choose the access level for the IAM role.
Connect Account
Click the “Connect” button in the MilkStraw AI dashboard to apply the CloudFormation template.
Create Stack (AWS Console)
Click “Create stack” to deploy the cross account role in your AWS Console.
Enter Account Details
Return to MilkStraw AI and provide:
- Account Nickname (for easy identification)
- AWS Account Number
- Role Name (if modified in CloudFormation)
Manual Setup
Creating the IAM Policy
Navigate to IAM
Open the AWS Management Console and go to IAM (Identity and Access Management).
Create New Policy
Select “Policies” → “Create policy” and switch to the JSON editor.
Add Policy JSON
Copy and paste the following policy:
Create the Policy
Name it “MilkStrawPolicy” and add a description, then click “Create policy”.
Creating the IAM Role
Create Role
In IAM, select “Roles” → “Create role” → “Custom trust policy”.
Add Trust Policy
Add the following trust relationship:
Attach Policy
Select the “MilkStrawPolicy” created earlier.
Create the Role
Name the role (e.g., “MilkStrawRole”) and add a description, then click “Create role”.
Completing the Setup
Enter Account Details
In the MilkStraw AI dashboard, provide:
- Account Nickname
- AWS Account Number
- Role Name
Verify Connection
MilkStraw AI will verify the connection using the provided role and external ID.
Managing Multiple AWS Accounts
Was this page helpful?