Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.leanly.dev/llms.txt

Use this file to discover all available pages before exploring further.

Connect your AWS account by creating a single IAM role for Leanly — the operator role. Leanly uses it to create narrowly scoped, workload-specific roles as you deploy. No broader access is ever requested.

Connect using our agent skill

The fastest way to connect your AWS account. The agent skill walks you through the setup and configures the required IAM role automatically.
Our agent skill is on its way — check back soon.

Manual setup

If you prefer to configure the IAM role yourself, follow the steps below.

Before you begin

  • AWS account access — make sure you are logged in to the AWS account you want to connect.
  • Your Leanly tenant ID — find this in your Leanly dashboard under Settings.

1. Deploy the operator role

1

Open CloudFormation

In your AWS Management Console, navigate to CloudFormation.
2

Create a new stack

Click Create stack and choose With new resources (standard).
3

Specify the template

Under Specify template, select Amazon S3 URL and enter the following, then click Next.
https://s3.amazonaws.com/operatortemplates.leanly.cloud/AwsDevOpsEngineer.json
4

Name your stack

Enter a stack name to help you identify the resources this template creates later (e.g. LeanlyOperator).
5

Enter your Leanly tenant ID

Under Parameters, provide your Leanly tenant ID and click Next.
6

Review options

Optionally configure tags, permissions, and advanced options. You can skip this for most setups.
7

Acknowledge IAM capabilities

At the bottom of the page, acknowledge the required IAM capabilities and click Next.
8

Submit

Review your configuration and click Submit. Deployment usually takes 1–2 minutes.
Wait until the stack status changes to CREATE_COMPLETE before proceeding.
9

Copy the operator role ARN

Open the Outputs tab and copy the OperatorRoleArn value — you’ll need it in the next step.

2. Connect the role to Leanly

1

Open integrations

In your Leanly dashboard, go to Integrations, select Amazon Web Services, and click Connect Account.
2

Acknowledge the deployment

Confirm that you have deployed the operator role. This will reveal the ARN input field.
3

Provide the role ARN

Paste the OperatorRoleArn value you copied and click Connect Account.

Permissions

The operator role is granted the minimum permissions needed to manage workload infrastructure on your behalf.
PermissionAccessWhy
ReadOnlyAccessReadDetect existing resources and read account configuration
IAM role and instance profile managementRead and writeCreate and manage workload-specific IAM roles
IAM policy managementRead and writeAttach and manage policies on workload roles
iam:PassRoleWritePass roles to AWS services when deploying workloads