No more confidentiality issues with Amazon AWS cloud cost tracking solutions
Great news ! Amazon just announced today that IAM users can now be given access to the Account Activity page which contains billing information.
This is not only great news for all the people involved in Amazon AWS projects whom were bared access from the previous billing information and can now access it (this was much needed, for instance to enable software architects to measure the cost impact of their technical decisions).
But it’s also a great news for the users of Cloud cost tracking and analytics products like Teevity or Cloudabililty. These products had to ask users for the user/password of the administrator account attached to the AWS account in order to be able to parse the billing page. AWS Consolidated Billing Accounts could be used to mitigate that risk but here again, we had to request access to the user/password of these accounts and the solution was not completely safe.
With this new features from Amazon IAM, problem solved ! Companies using Cloud costs tracking solutions for AWS just need to create a special IAM Group with just the rights needed to access the billing page and use that user when declaring on account on these product.
figure class="tmblr-full" data-orig-height="218" data-orig-width="500"></figure>
Teevity CloudCost has full support for this new IAM feature right now.
You can sign-up for free right now and start monitoring your cloud costs and get insight on how to optimize them.
Happy Cloud use.
Nicolas Fonrose
@nfonrose
PS : Some “cloud costs” solutions you can find on the Web were not facing this confidentiality issue because they are not tracking “real costs” by accessing your AWS Billing Page but are rather *estimating* costs via the analysis of running instances. This has the disadvantage of only tracking EC2 costs which, from the feedback we get from our customers, can be only a part of the AWS costs (S3, CloudFront, SimpleDB, … usage can be very significant).