What permissions does Appranix service account need to protect AWS resources?

What permissions does Appranix service account need to protect AWS resources?

Appranix service account requires the following permissions to successfully discover and protect your cloud infrastructure in AWS and recover it in the DR/Recovery regions.

The Role name and the purpose of the asking is explained in the below table.


Discovery - Permission required to discover the resources and its metadata.

Protection - Permission required to protect the resources and its metadata.

Recovery -  Permission required to recover the protected data from the Primary region to the secondary/DR region.


#RolesDiscoveryProtectionRecovery
1Ec2FullAccessTRUETRUETRUE
2ELBFullAccessTRUETRUETRUE
3RDSFullAccessTRUETRUETRUE
4CloudFormationFullAccessFALSEFALSETRUE
5KMSDescribeTRUEFALSETRUE
6KMSEncryptAndDecryptTRUETRUETRUE
7KMSCreateGrantTRUETRUETRUE
8ACMReadAccessTRUEFALSETRUE
9IAMPassRoleTRUETRUETRUE


    • Related Articles

    • AWS Environment Onboarding

      Subscribe from AWS Marketplace Search for "Appranix" in the AWS Marketplace Subscribe for "Appranix Cloud Application Resilience" from the search result Subscribe to the service Register your account with Appranix AWS Onboarding Prerequisites For ...
    • What roles does Appranix service account need to protect GCP resources?

      Appranix creates a service account and assigns the below roles to the service account. The Role name and the purpose of the asking is explained in the below table. Discovery - Permission required to discover the resources and its metadata. ...
    • GCP Environment Onboarding

      Subscribe from GCP market place Search for "Appranix" in GCP Marketplace. Subscribe to the "Appranix Cloud Application Resilience". Register an account with Appranix using the registration form. Activate your account through the verification email ...
    • AWS Cross-Tenant Configuration

      Cloud Connection For doing a Cross-tenant recovery the user should have two Cloud Connections, one pointing to the primary AWS account and another one pointing to the recovery AWS account. To add a new AWS Cloud Connection in Appranix, follow the ...
    • AWS Cloud Connections FAQ

      When we add an AWS account to Appranix does it take into account the default resources of the AWS account as well? - No, only the dependent resources of the selected resource(EC2, RDS Instance) While discovering assemblies, Appranix does show the VPC ...