Links

Step 3: Create and scan a Snyk Cloud Environment (Web UI)

Recap You have created the Snyk Cloud IAM role. Now you can create and scan a Snyk Cloud Environment.
To create and scan a Snyk Cloud Environment, you must provide the role’s Amazon Resource Name (ARN). Then you can finish onboarding the environment.

Find the role ARN

The role ARN should follow this format, unless you changed the name of the role in the Terraform or CloudFormation template:
arn:aws:iam::YOUR-ACCOUNT-ID:role/snyk-cloud-role
If you do not know your Amazon Web Services (AWS) account ID, or if you changed the name of the IAM role in the Terraform or CloudFormation template, you can find the role ARN using the AWS CLI or the AWS Management Console.

AWS CLI

To find the ARN of the Snyk Cloud IAM role using the AWS CLI, retrieve the role details, replacing snyk-cloud-role with the name of your role if you changed it:
aws iam get-role \
--role-name snyk-cloud-role \
--query 'Role.Arn' --output text
You'll see output like this:
arn:aws:iam::123412341234:role/snyk-cloud-role

AWS Management Console

  1. 1.
    Log in to the AWS Management Console.
  2. 3.
    In the left sidebar, select Roles.
  3. 4.
    On the Roles page, search for snyk-cloud-role (or substitute the name of your role, if you changed it):
Search for the name of your role in the AWS Management Console
Search for the name of your role in the AWS Management Console
5. Select the role.
6. On the role details page, in the Summary section, find and copy the ARN:
Copy the role ARN in the AWS Management Console
Copy the role ARN in the AWS Management Console

Create and scan environment

  1. 1.
    In the Snyk Web UI Add AWS Environment modal where you downloaded the IAM role template, enter your role ARN in the IAM role ARN field.
  2. 2.
    Optionally, enter an environment name. If one is not provided, Snyk will use your AWS account alias.
  3. 3.
    Select Approve and begin scan.
  4. 4.
    You'll see a confirmation message: "AWS environment successfully added." Select Add another environment to return to the Add AWS Environment modal and onboard a new account, or select Go to settings if you are finished:
Success message after adding an AWS environment in the Snyk Web UI
Success message after adding an AWS environment in the Snyk Web UI

What's next?

You can now view misconfiguration issues in the Snyk Web UI. See Snyk Cloud issues for more information.
© 2022 Snyk Limited