Cloud Integrations
Connect VeraID to AWS, GCP, Azure, and Kubernetes for unified identity management.
Supported Providers
AWS
Amazon Web Services
Manage IAM users, roles, and access keys with automatic rotation.
- IAM User sync
- Access key rotation
- Role assumption
- CloudTrail integration
GCP
Google Cloud Platform
Sync service accounts and manage keys across projects.
- Service account sync
- Key rotation
- Workload identity
- Audit logging
Azure
Microsoft Azure
Integrate with Azure AD for app registrations and managed identities.
- App registration sync
- Client secret rotation
- Managed identity
- Key Vault integration
K8s
Kubernetes
Manage service accounts and secrets across clusters.
- Service account sync
- Token rotation
- Secret management
- RBAC integration
AWS Integration Setup
Create an IAM Role for VeraID
Create a role with permissions to manage IAM users and access keys.
Configure Trust Relationship
Allow VeraID to assume the role using our external ID.
Add Credentials in VeraID
Enter the role ARN in Settings → Integrations → AWS.
IAM Policy
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"iam:ListUsers",
"iam:ListAccessKeys",
"iam:CreateAccessKey",
"iam:DeleteAccessKey",
"iam:GetUser",
"iam:UpdateAccessKey"
],
"Resource": "*"
}
]
}Sync Configuration
Configure how VeraID syncs with your cloud providers:
Sync Settings
{
"provider": "aws",
"enabled": true,
"syncInterval": "1h",
"autoImport": true,
"filters": {
"tags": {
"ManagedBy": "VeraID"
},
"excludePatterns": ["admin-*", "root"]
},
"rotation": {
"enabled": true,
"intervalDays": 30,
"gracePeriodHours": 24
}
}