Connecting to AWS

Step-by-step guide to connect an AWS account to a Bluebricks collection using a CloudFormation stack and Role ARN

Prerequisites

A valid AWS Account.
A Bluebricks collection.

Step 1: Create Role ARN using CloudFormation Stack

Download Bluebricks CloudFormation Stack
Navigate to AWS Console
Click the "Search" field, type "cloudformation" and click it
Click "Create stack" and choose "With new resources (standard)"
Mark "Choose an existing template", mark "Upload a template file" and click Choose file
Open the file you downloaded in step 1 and click Next
Give your stack a name and click Next
Acknowledge the required capabilities at the bottom of the page and click Next
Review and click Submit

AWS supports two Role ARNs: at least one is required:

Discovery Role ARN: grants read-only access for cloud discovery and resource inventory.
Orchestration Role ARN: grants read/write access for deploying and managing infrastructure through blueprints.

You can provide both to enable full visibility and deployment capabilities. See Connect your Cloud for details on permission types.

Step 2: Connect AWS in Bluebricks

Using the app

Click "Connect Cloud" on the collection you want to link to AWS
Select AWS as the Cloud Provider
Choose an existing Account Number or click "New Account"
If creating a New Account, enter the Role ARN ID and CloudFormation Stack ID
Click "Connect & Create" to complete the setup

Connect via CLI

You can connect an AWS cloud account to a collection using the Bricks CLI:

bricks setup aws --collection production

The command walks you through the AWS connection flow interactively. After setup completes, verify the connection:

bricks collection ls

A connected collection shows the cloud provider and account name:

GUID                                NAME           CLOUD PROVIDER   CLOUD ACCOUNT   SLUG              STATUS
----------------------------------- -------------- ---------------- --------------- ----------------- -------------------------
env-uuid-123                        production    AWS              aws-prod        production        DEFAULT, web-app (running)

An unconnected collection shows - for both fields:

GUID                                NAME           CLOUD PROVIDER   CLOUD ACCOUNT   SLUG              STATUS
----------------------------------- -------------- ---------------- --------------- ----------------- -------------------------
env-uuid-456                        development   -                -               development       -

CLI cloud setup currently supports AWS only. To connect GCP, Azure, or a self-hosted runner, use the Bluebricks app with the provider-specific instructions above.

Using the API

Use the Cloud Accounts API to create a cloud account. Pass the Stack ID as cloudFormationStackId and the RoleArn Value as roleArnId.

Next steps

Managing Collections
Connect your Cloud: overview of all cloud connection types
CLI Reference: bricks clouds

PreviousConnect your Cloud NextConnecting to Azure

Last updated 10 days ago

Was this helpful?

Good afternoon

hashtagPrerequisites

hashtagStep 1: Create Role ARN using CloudFormation Stack

hashtagStep 2: Connect AWS in Bluebricks

hashtagUsing the app

hashtagConnect via CLI

hashtagUsing the API

hashtagNext steps