Ctadel

Connect your first cloud account

Ctadel scans your cloud through API credentials that you create on your side and paste into the platform. Nothing is installed on your workloads.

Pick your cloud

Required: a Scaleway IAM principal with read access on the organisation and project(s) you want Ctadel to scan, including object storage, snapshots, and audit logs.

  1. In the Scaleway console, open IAM, Applications.
  2. Create an application named ctadel-scanner.
  3. Generate an API key for that application. Note the Access Key and Secret Key.
  4. Attach a policy granting read access at the organisation scope. The wizard in Ctadel lists the exact permission sets to attach.
  5. In Ctadel, open Integrations, Cloud providers, Scaleway and paste the keys plus the Organization ID.

What happens after you connect

  1. Resource discovery runs first. Within minutes you see your inventory populate under Inventory and the cloud graph build up.
  2. Posture rules start firing: CSPM, KSPM, DSPM, HCR, Secrets, Vulnerabilities. Findings appear under each module's page.
  3. Toxic combinations start matching once the graph is built.
  4. Alerts, if you configured Slack / email / webhook, start landing.

Multi-cloud

You can connect cloud accounts from several providers in the same tenant. Identities that exist in more than one cloud (a single email mapped into both AWS IAM and GCP IAM, for example) are correlated, so the same person showing up as Admin on two clouds becomes a single risk to investigate.

What's next