New FalconDiscoverAwsAccount
Provision Falcon Discover for Cloud AWS Accounts
Requires 'AWS Accounts: Write'.
| Name | Type | Min | Max | Allowed | Pipeline | PipelineByName | Description |
|---|---|---|---|---|---|---|---|
| Mode | String |
cloudformationmanual
|
X | Provisioning mode [default: manual] | |||
| ExternalId | String | X | AWS account identifier with cross-account IAM role access | ||||
| IamRoleArn | String | X | Full ARN of the IAM role created in the AWS account to control access | ||||
| CloudtrailBucketOwnerId | String | X | AWS account identifier containing cloudtrail logs | ||||
| CloudtrailBucketRegion | String | X | AWS region where the account containing cloudtrail logs resides | ||||
| RateLimitTime | Int64 | X | Number of seconds between requests defined by 'RateLimitReq' | ||||
| RateLimitReq | Int32 | X | Maximum number of requests within 'RateLimitTime' | ||||
| Id | String | X | AWS account identifier |
New-FalconDiscoverAwsAccount [[-Mode] <String>] [[-ExternalId] <String>] [[-IamRoleArn] <String>] [[-CloudtrailBucketOwnerId] <String>] [[-CloudtrailBucketRegion] <String>] [[-RateLimitTime] <Int64>] [[-RateLimitReq] <Int32>] [-Id] <String> [-WhatIf] [-Confirm] [<CommonParameters>]$Created = New-FalconDiscoverAwsAccount -Id <id> -Mode cloudformationOnce the account has been added, follow the cloudformation_url link to AWS and follow the steps outlined in the AWS setup guide. The PowerShell command Start-Process will launch your default browser:
Start-Process $Created.cloudformation_urlNew-FalconDiscoverAwsAccount -Id <id> -IamRoleArn <string> -ExternalId <string>
2022-10-31: PSFalcon v2.2.3
