DNX ONE TUTORIAL

Version: 1.4

Author: Pietro Marmelo

Revision: Pietro Marmelo

DNX-ROOT role for the DNX Well Architected Foundation

In this tutorial, we will show how to set up the dnx-role that will give DNX secure access to create the DNX Well Architected Foundation environments and check your Master Account ID.

Prerequisites:

• AWS Admin Access to your AWS Master Account

Steps: Link

1. Login to AWS console.
2. Go to Services and type “CloudFormation”.
3. Click on CloudFormation.

1. Click on Create stack

1. On the next page insert the stack link on Amazon S3 URL. Stack link: https://dnx-assets-prod.s3-ap-southeast-2.amazonaws.com/assets/dnx-master-role.yml

1. Click Next.
2. Insert the stack name “dnx-root”.
3. In the Parameters area we have five options to choose (AccountCreationOnly, Admin, Billing, CFDeploy and OrganizationAccountAccessRoleName). By default our stack will set up a full access role and grant DNX access for Billing. Click Next.

• AccountCreationOnly gives permission to DNX to create only new accounts inside the Master Account. Default “False”. ** Admin access is required to build all Foundations features (default permission). Default “True”. * Billing gives DNX permission to access the billing service and create cost reports. Default “True”. ** CFDeploy gives DNX permission to access the new accounts. Default “True”. ***** OrganizationAccountAccessRoleName default role name used by DNX to assume new roles. Leave as default.

1. On Configure stack options click Next.
2. On the Review page, mark the checkbox “I acknowledge that AWS CloudFormation might create IAM resources with custom names” and click in Create stack.

1. On the Next page, wait for a few minutes and click in Refresh until the process is completed.

1. When the status changes to CREATE_COMPLETE, the process is done. Account ID (Master Account). Each Amazon account has an associated 12-digit account identifier (ID). This identifier needs to be sent to DNX to start the Well Architected Foundation.

Below is a way to know your account number.

1. Log in to the AWS Management Console.
2. At the top of the page, click the link that is your account name.
3. Click My Account.
4. Your 12-digit account ID is listed under Account Settings.

When the dnx-root role is created please notify DNX and send us the Account ID number.