What permissions does Appranix service account need to protect AWS resources?

What permissions does Appranix service account need to protect AWS resources?

Appranix service account requires the following permissions to successfully discover and protect your cloud infrastructure in AWS and recover it in the DR/Recovery regions.

The Role name and the purpose of the asking is explained in the below table.


Discovery - Permission required to discover the resources and its metadata.

Protection - Permission required to protect the resources and its metadata.

Recovery -  Permission required to recover the protected data from the Primary region to the secondary/DR region.


#RolesDiscoveryProtectionRecovery
1Ec2FullAccessTRUETRUETRUE
2ELBFullAccessTRUETRUETRUE
3RDSFullAccessTRUETRUETRUE
4CloudFormationFullAccessFALSEFALSETRUE
5KMSDescribeTRUEFALSETRUE
6KMSEncryptAndDecryptTRUETRUETRUE
7KMSCreateGrantTRUETRUETRUE
8ACMReadAccessTRUEFALSETRUE
9IAMPassRoleTRUETRUETRUE


    • Related Articles

    • What roles does Appranix service account need to protect GCP resources?

      Appranix creates a service account and assigns the below roles to the service account. The Role name and the purpose of the asking is explained in the below table. Discovery - Permission required to discover the resources and its metadata. ...
    • AWS Cloud Connections FAQ

      When we add an AWS account to Appranix does it take into account the default resources of the AWS account as well? - No, only the dependent resources of the selected resource(EC2, RDS Instance) While discovering assemblies, Appranix does show the VPC ...
    • Azure OnBoarding Pre-requisites

                  Connect to an Azure Account Azure OnBoarding  For onboarding the Azure account in Appranix, the following details and a few roles and permissions in Azure are supposed to be enabled. Permissions Required: We need any one of the following ...
    • GCP Kubernetes Protection Service

      Overview Protect and recover your entire Kubernetes apps, configurations, and data for your app resilience Protect your on-prem or on-cloud clusters for high availability Become compliant with organizational DR policies No infrastructure required, ...
    • How is AWS certificate in ACM be maintained in recovery region for Load balancer by Appranix ?

      AWS Certificate Manager is a service that makes it easier to enable, manage, and deploy public and private SSL/TLS certificates for use with AWS services. Use ACM or IAM to manage certificate. Please refer to the link for more details ...