AWS

CloudBooster runs natively on AWS today. Every CloudBooster account starts by linking one or more AWS accounts through a cross-account IAM role you control.

Connect an account

Open the CloudBooster portal and run the Connect AWS account wizard from Organisation → Cloud Profiles. The wizard hands you a CloudFormation stack template to deploy into the target AWS account; the stack creates the role CloudBooster assumes when planning, auditing, or applying ChangeSets.

See the Connect an AWS account recipe for the full walkthrough.

What the role can do

CloudBooster's cross-account role is scoped to the operations it needs and nothing more. The full permission boundary, retention policy, and rotation playbook are documented in the Cross-Account Role Security Model.

Importing existing infrastructure

If you already manage AWS resources with Terraform or Pulumi, you can bring those under CloudBooster without rewriting them:

• Import a Terraform stack
• Import a Pulumi stack

Auditing

cbx audit aws runs security and compliance checks against a connected AWS account, reading it live and grounding findings in CloudBooster's curated AWS knowledge. See Use cbx audit aws for usage and Run cbx audit in GitHub Actions to wire it into CI.