Topics on this page
About Cloud Account Management
The Cloud Accounts feature allows you to easily connect your cloud providers with Trend Micro Cloud One so that Cloud One can provide protection for the resources in your cloud accounts.
Supported cloud providers
Currently, the common Cloud Accounts feature is used for File Storage Security protection on AWS and Google Cloud Platform (GCP). More support and integration will be added in the future. For the remainder of the Cloud One services, please connect your cloud accounts directly in those services.
- Workload Security: https://cloudone.trendmicro.com/docs/workload-security/computers-add/
- Network Security: https://cloudone.trendmicro.com/docs/network-security/add_cloud_accounts_appliances/
- Application Security: https://cloudone.trendmicro.com/docs/application-security/security-posture-aws/
- File Storage Security (AWS and Azure): https://cloudone.trendmicro.com/docs/file-storage-security/
- Conformity: https://cloudone.trendmicro.com/docs/conformity/add-cloud-account/
What permissions does Cloud One require?
The required permissions can be found in the set up instructions for each cloud provider, but are currently scoped to read-only. When adding your GCP account, you'll be required to grant Cloud One the viewer role. This does not grant permission to modify any resources or data.
How does this connect to my cloud provider?
Cloud One uses OpenID Connect (OIDC) to create a trust relationship between Cloud One, which acts as the external identity provider, and a third party cloud provider, such as AWS or GCP.