Connect using our agent skill
The fastest way to connect your AWS account. The agent skill walks you through the setup and configures the required IAM role automatically.Copy and run this prompt to connect your AWS account automatically.
Manual setup
If you prefer to configure the IAM role yourself, follow the steps below.Set up manually
Set up manually
Before you begin
- AWS account access — make sure you are logged in to the AWS account you want to connect.
- Your Leanly tenant ID — find this in your Leanly dashboard under Settings.
1. Deploy the operator role
Specify the template
Under Specify template, select Amazon S3 URL and enter the following, then click Next.
Name your stack
Enter a stack name to help you identify the resources this template creates later (e.g.
LeanlyOperator).Review options
Optionally configure tags, permissions, and advanced options. You can skip this for most setups.
Acknowledge IAM capabilities
At the bottom of the page, acknowledge the required IAM capabilities and click Next.
Submit
Review your configuration and click Submit. Deployment usually takes 1–2 minutes.
Wait until the stack status changes to CREATE_COMPLETE before proceeding.
2. Connect the role to Leanly
Open integrations
In your Leanly dashboard, go to Integrations, select Amazon Web Services, and click Connect Account.
Acknowledge the deployment
Confirm that you have deployed the operator role. This will reveal the ARN input field.
Permissions
The operator role is granted the minimum permissions needed to manage workload infrastructure on your behalf.| Permission | Access | Why |
|---|---|---|
| ReadOnlyAccess | Read | Detect existing resources and read account configuration |
| IAM role and instance profile management | Read and write | Create and manage workload-specific IAM roles |
| IAM policy management | Read and write | Attach and manage policies on workload roles |
iam:PassRole | Write | Pass roles to AWS services when deploying workloads |