When registering an individual AWS account in CrowdStrike Falcon Cloud Security using the Falcon UI, therecommended and supported method is AWS CloudFormation. CrowdStrike provides a prebuilt CloudFormation template that automates the creation of required AWS resources, including IAM roles, permissions, and trust relationships needed for secure, read-only API access.

Using CloudFormation ensures the deployment isconsistent, auditable, and aligned with AWS best practices. It minimizes human error by automatically configuring the correct permissions required for Falcon to collect configuration, identity, and resource metadata from AWS. This method also simplifies lifecycle management—resources can be updated or removed cleanly by managing the CloudFormation stack.

Other options are not recommended for this use case.AWS Configis a native AWS compliance service but does not handle Falcon onboarding.Terraform scriptsmay be used in advanced or large-scale automation scenarios, but they are not the default or recommended approach for single-account registration in the Falcon UI.Bash scriptslack governance, validation, and repeatability.

Therefore, when registering a single AWS account through the Falcon console,AWS CloudFormationis the correct and CrowdStrike-recommended method.