Log in to Amazon Web Services (AWS) Console.
Go to the IAM service.
Go to Roles and click Create Role.
Under “Select type of trusted entity” choose Another AWS account. Then:
Paste in the Qualys AWS Account ID (from connector details).
Select Require external ID and paste in the External ID (from connector details).
Click Next: Permissions.
Find the policy titled “SecurityAudit” and select the check boxes next to it. Click Next: Tags.
Click Next: Review.
Enter a role name (e.g. QualysCloudViewRole) and click Create role.
Click on the new role to view details. Copy the Role ARN value and paste it into the connector details page in AMP.