CloudCheckr Support Knowledgebase

Check out the navigation bar at the top of the page for links to report documentation, configuration information, and more.

Getting Started

Before you can use CloudCheckr to check your cloud, you will need to first configure your cloud provider to allow CloudCheckr access to your account. The following pages will walk you through those steps:


Preparing Your AWS Account

Creating and Configuring Your CloudCheckr Accounts

Using the Complete IAM Policy

Enabling New Service Permissions for CloudCheckr

Enabling Permissions for Best Practice Checks

Using CSV Account Upload


Getting Started with Azure

Creating and Configuring Your Azure Enterprise Agreement Accounts

Creating and Configuring Your Azure Active Directory / Subscription Accounts

Creating and Configuring Your Azure Cloud Solution Provider (CSP) Accounts


Creating and Configuring Your Google Cloud Platform Accounts

Digging In

User Management

CloudCheckr customers have full control over provisioning and managing user access within their account(s). User access can be configured with specific permissions, rights, and visibility based on the needs and role of the user.


Configuring your GovCloud AWS Account within CloudCheckr is slightly different than configuring a standard commercial AWS account because GovCloud accounts write their Detailed Billing Reports to a commercial AWS account. To configure CloudCheckr for an AWS account, you will need to setup two different AWS Credentials: one for the account itself, and one for its linked commercial account. This page walks you through adding GovCloud accounts.

CloudCheckr Reports

Cost Reports

CloudCheckr offers a wide range of summary, detailed, and custom cost reporting.

Inventory Reports

Inventory reporting provides comprehensive details about your AWS resources, including trending reporting, map summary, and custom reports.

Security Reports

CloudCheckr provides over 100 security checks for AWS, and offers reports and alerting around AWS CloudTrail and Config, a perimeter assessment, as well as in-depth VPC and security group analysis.

Utilization Reports

CloudCheckr’s utilization reporting helps you manage your AWS deployment, showing how much your resources are being utilized and helping to ensure your infrastructure is running smoothly.

Best Practice Checks

CloudCheckr provides over 400 best practice checks to help ensure your infrastructure is configured properly and to highlight areas that may be cause for concern. These checks will focus on four key areas: cost, security, availability, and usage.


CloudCheckr can alert when any number of critical events occurs within your AWS account. You can be alerted when you approach your monthly budget, when someone accesses your account using the Root user account, when a publicly accessible resource is launched, plus many other important scenarios.

CloudCheckr API

CloudCheckr API User Guide

This guide provides detailed information and setup instructions for getting started with the CloudCheckr API.

CloudCheckr API Reference Guide

This guide provides parameters and examples for all available account-level CloudCheckr API endpoints.

CloudCheckr Admin API Reference Guide

Admin-level access keys allow API users to make account management related calls and run queries across against any CloudCheckr account.

Frequently Asked Questions