Cloud Provider Discovery
Connect your cloud accounts to discover AI agents deployed on AWS Bedrock, Azure AI, and GCP Vertex AI.
Supported Providers
| Provider | What It Discovers | Credentials Needed |
|---|---|---|
| AWS Bedrock | Bedrock agents, foundation models, knowledge bases | Access Key ID + Secret Access Key with Bedrock read permissions |
| Azure AI | Azure OpenAI accounts, model deployments | Service principal: Tenant ID, Client ID, Client Secret |
| GCP Vertex AI | Vertex AI endpoints, deployed models | Access token (from gcloud auth print-access-token) |
Setup
Go to Agent Inventory → Integrations
Click Add Integration and select your cloud provider.
Enter your credentials
Paste your cloud credentials in the form. They are encrypted with AES-256-GCM and stored securely.
Configure the scan
Set provider-specific configuration:
- AWS: Region (e.g., us-east-1)
- Azure: Subscription ID, optional Resource Group
- GCP: Project ID, Region (e.g., us-central1)
Click Add & Scan
NodeLoom scans your cloud account and adds any discovered agents to the inventory.
AWS Bedrock
The AWS Bedrock scanner lists all Bedrock agents in your account and fetches their foundation model assignments. Each agent appears in the inventory with its model as a dependency.
IAM permissions
bedrock:ListAgents, bedrock:GetAgent, and bedrock:ListFoundationModels permissions.Azure AI
The Azure scanner discovers Cognitive Services and Azure OpenAI accounts in your subscription, then lists model deployments for each account. Each deployment appears as a model dependency.
Service principal
GCP Vertex AI
The GCP scanner lists Vertex AI endpoints and their deployed models in your project. Each endpoint appears as an agent with its models as dependencies.
Access token
gcloud auth print-access-token. Tokens expire after 1 hour — re-scan to refresh.Re-scanning
Click the Scan button on any integration to re-scan at any time. Existing agents are updated (last seen timestamp refreshed), and new agents are added. Nothing is deleted — agents that no longer exist in the cloud will simply stop being updated.