Prerequisites
Before you begin, ensure:
You have admin access or IAM permissions to:
iam:CreateRoleiam:AttachRolePolicyiam:GetRole
Step 1: Enter AWS Account Number
Log in to the ComplyJet dashboard.
Navigate to Integrations > Cloud Providers.
Click Connect on the AWS card.
When prompted, enter your 12-digit AWS Account ID.
Where to find it:
Log in to the AWS Console
Click your account name (top-right) > My Account
Copy the Account ID
Step 2: Create an IAM Role in AWS
You’ll now create a secure IAM Role that allows ComplyJet to access your AWS resources in read-only mode.
2.1 Define the Trust Relationship
Go to the IAM Console
Click Roles > Create role
Choose Trusted Entity Type:
AWS accountSelect: Another AWS account
Enter the ComplyJet Account ID shown in ComplyJet
Check: ✅ Require external ID
Paste the External ID shown in ComplyJet
Click Next
ℹ️ The external ID ensures only ComplyJet can assume this role. Do not enable MFA.
2.2 Attach the Required Policy
In the Permissions step, search for the managed policy:
SecurityAudit
Select the checkbox for SecurityAudit
ℹ️ This AWS-managed policy gives ComplyJet the read-only access it needs.
Click Next: Tags → (You can skip this step)
Click Next: Review
2.3 Name the Role
Role Name:
complyjet-auditorOptional description:
Cross-account read only access for ComplyJet compliance automation.
Click Create role.
Step 3: Link the Role to ComplyJet
Once the role is created, go to IAM > Roles
Click on the role you just created (
complyjet-auditor)Copy the Role ARN
Format:arn:aws:iam::<your-account-id>:role/complyjet-auditor
Paste this Role ARN into the ComplyJet AWS integration setup screen
Step 4: Select AWS Regions to Monitor
Choose the AWS regions where your infrastructure is hosted.
Click Save & Connect
You’re Done!
ComplyJet will now securely connect to your AWS account and begin pulling in your cloud resources.
✅ Resources will appear in your dashboard within a few minutes.
✅ Compliance checks will start automatically.
✅ You can filter tests by AWS to see control mappings.