Add a customer AWS account for billing only
This document describes how to add your customer's own AWS account for billing only.
For details of how to obtain credentials of a customer of your AWS partner account for billing only, see Obtain AWS credentials
Introduction to customer accounts for billing only
If one of your customers already has their own AWS account, you can onboard them into the platform gradually, starting with their billing dashboards only.
This page describes how to add obtain AWS credentials with billing access only and how to add them to Abiquo to display billing dashboards only.
The accounts you create with this process will have no compute access to AWS through Abiquo.
Obtain billing-only credentials for a customer AWS account
These steps describe how to obtain billing-only credentials for a main account and a sub-account (AWSAccount2
).
You can repeat the sub-account steps to create more sub-accounts as required.
Log in to the root AWS account of your customer
From the same web browser where you logged into AWS, go to this link to create the billing user for pricing credentials
This CloudFormation template will create the
abiquo-billing-user
.
This user will belong to an account that we will callAWSAccount1
.
Theabiquo-billing-user
will access the S3 billing bucket to get the billing information. We recommend that you don't change the user nameEnter a Password and note it down!
At the end of the page, select the acknowledgement checkbox, then click Create stack
When the stack creation is complete, go to the Outputs tab, and take a screenshot of the details for
AWSAccount1
Log out from the root AWS account and log into
AWSAccount1
(the new child account from the previous step)From the same web browser where you logged into AWS, follow this link to create the billing user for public credentials.
This CloudFormation template will create the
abiquo-billing-user-public
user.
This user will belong to an account that we will callAWSAccount2
.
Thisabiquo-billing-user-public
user will identify to Abiquo which billing data to process for the account. We recommend that you don't change the user nameEnter a Password and note it down!
At the end of the page, select the acknowledgement checkbox, then click Create stack.
When the stack creation is complete, go to the Outputs tab and take a screenshot of the details for
AWSAccount2
Log into each account (
AWSAccount1
,AWSAccount2
, etc) and create a new access key for each of them.
See https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html#Using_CreateAccessKey.
Create an Abiquo keynode and enterprises for billing only
In Abiquo, the main customer account will be a keynode enterprise under a reseller enterprise.
You will add the customer's basic pricing credentials to the keynode enterprise.
Then for each AWS account under the keynode, you will create a standard enterprise and add a minimal public cloud credential. This will enable the platform to identify each of these enterprises in the billing data.
For the keynode enterprise:
Create a new scope for the keynode enterprise.
For the Parent scope, select the scope of your main reseller enterprise.
On the Entities tab, check that no computing resources are activated for this scope
Create an enterprise for your customer.
For the Default scope, select the enterprise scope.
Select the Keynode checkbox. Save the enterprise
Edit the new keynode enterprise
Go to Credentials → Pricing
For the Access key ID, add the key for user
abiquo-billing-user
(AWSAccount1
)For more details, see Add public cloud pricing credentials for a tenant
For each AWS account of the customer:
For each AWS account, create a new standard enterprise.
For the Default scope, select the scope of the keynode enterprise
Edit the new standard enterprise
Go to the Credentials → Public
For the the Access key ID, add the key for user
abiquo-billing-user-public
(AWSAccount2
).Do NOT select the Only for billing checkbox
For more details, see "Add public cloud credentials for the enterprise" from the Compute in public cloud regions documentation.
Create a cost and usage report in AWS
To display billing data on the Abiquo dashboard, you will need to configure a Cost and Usage Report in an S3 bucket in AWS.
As you work through these steps, note the values you configure so that you can later add them to Abiquo with enterprise properties.
Log in to the main customer root AWS account
If your customer does not have an S3 bucket for billing data, create one, with a name such as
costandusagebillingreport
Within the bucket, create a folder where AWS will store your reports. Give it the name of your report, such as
costandusagereport
Go to Cost & Usage Reports
Enter the Report name then click Next
Click Configure and select the S3 bucket. Click Next, then select I have configured that this policy is correct.
For the report prefix, by default, Amazon will put the reports in a folder with the name format
/report-name/date-range/
. Note this value to enter it as theamazon_bucket_prefix
in Abiquo.Click Next
Review your configuration and check that the following parameters are set:
bucket name
path (folder/subfolder)
time detail:
Hourly
GZ
orZIP
format
Configure Amazon accounts
These steps register the S3 bucket with the Cost and Usage Report in Abiquo, so that Abiquo can obtain the billing data.
In Abiquo, edit the keynode enterprise and go to Properties.
Enter the properties with values as described here:
amazon_bucket
:bucket_name
amazon_bucket_region
: code for the AWS region of the bucket, such asus-east-1
amazon_report_name
: amazon_bucket/amazon_bucket_prefix/amazon_report_name
/file.csvamazon_bucket_prefix
: amazon_bucket/amazon_bucket_prefix
/amazon_report_name/file.csvamazon_billing_compress_format
:ZIP
orGZ
amazon_mpa
: set todedicated
orno
to use blended costs; if not present orshared
, use unblended costs
Save the keynode enterprise.
Copyright © 2006-2024, Abiquo Holdings SL. All rights reserved