Skip to content

Auto Discovered AWS IAM Role

Find an IAM role within your Splunk platform instance

Note

  • AWS does not support collecting data using an Auto-discovered EC2 IAM role in the China region.
  • You can’t edit or delete Auto-discovered EC2 IAM roles from the add-on.
  • Splunk Cloud restricts the use of the Auto-discovered EC2 IAM role feature due to security reasons.

  1. Follow https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html in the AWS documentation to set up an IAM role for your EC2.
  2. Ensure that this role has adequate permissions. If you do not give this role all of the permissions required for all inputs, configure AWS accounts specific to inputs not covered by the permissions for this role.
  3. On the Splunk Web home page, click Splunk Add-on for AWS in the left navigation bar.
  4. Click Configuration in the app navigation bar. By default, the add-on displays the Account tab.
  5. Look for the EC2 IAM role in the Autodiscovered IAM Role column. If you are in your own managed AWS environment and have an EC2 IAM role configured, it appears in this account list automatically.

You can also configure AWS accounts if you want to use both EC2 IAMroles and user accounts to ingest your AWS data.