Step 1: Creating an S3 bucket using the Cloudformation template

  1. Login to the AWS account and navigate to the CloudFormation service section.
  2. From the navigation pane on the left, select Stacks.
  3. From the top-right corner of the CloudFormation > Stacks screen, click Create stack > With new resources (standard).

    The Create stack page is updated to display the fields for Step 1 Specify template of the stack creation process.



  4. In the Prerequisite - Prepare Template section, select the Template is ready option.
  5. In the Specify template section:
    1. For Template source, select Upload a template file.
    2. To Upload a template file, click Choose file.
    3. Navigate to the CloudFormationTemplates/WithoutCondition folder.
    4. Select the S3Bucket.yaml file and click Open.
  6. Click Next.

    The Specify Stack Details page (step 2 of the stack creation process) is displayed.



  7. Enter a Stack name. For the purpose of this guide, we will name this stack avxdemo-S3.
  8. In the Parameters section, enter the following details:
    1. AccountId: From the top-right corner of the screen, click your username and copy the account ID displayed.
    2. BucketName: Enter a name for the S3 bucket that will be created in the backend. Recommended format to name the S3 bucket: avxdemo-<account ID>.
    3. OrganizationID:
      1. From the top-right corner of the screen, click your username.
      2. From the menu displayed, right click Organization to open it in a new tab.

        The Dashboard is displayed.

      3. From the Dashboard, copy the organization ID and paste it into the OrganizationID field.

        Note: The organization ID is a mandatory entry for the CloudFormation template.
    4. RoleName: Enter a name for the S3 bucket role. For the purpose of this guide, the S3 bucket role will be called avxdemos3bucketrole.

    The details entered on the Specify stack details page will be used to create a bucket policy for the S3 bucket we created for the AWS account. This bucket policy can be customized later based on customer preferences for how they want to secure their infrastructure.

  9. Click Next.
    The Configure stack options page (step 3 of the stack creation process) is displayed.

  10. Scroll down to the Stack failure options section and select Preserve successfully provisioned resources.
  11. Click Next.
    The Review <stack name> page (step 4 of the stack creation process) is displayed

  12. On the Review <stack name> page, scroll down to Capabilities and select the I acknowledge that AWS CloudFormation might create IAM resources with custom names checkbox.
  13. Click Create stack.

    The <stack name> page is displayed. This page lists the existing stacks on the left and the following details for each stack on the right:

    1. Stack info
    2. Events
    3. Resources
    4. Outputs
    5. Parameters
    6. Templates
    7. Change sets


    When the stack creation process is complete, Status (under the Events tab) will be updated to CREATE_COMPLETE. This means that, in the backend, an S3 bucket as well as the roles required to provision the bucket have been created. The bucket policy for the S3 bucket has also been updated accordingly.

  14. Navigate to the Parameters tab and note the bucket name to use it in the CloudFormation template for the master account.