Skip to main content
Skip table of contents

Amazon



Purpose

This document provides set up information for the Amazon integration.

Introduction

Under the Amazon tab you can set up the integration on OUTSCAN and HIAB to run scans against instances in the Amazon cloud. It also enables the option to run discovery scans using ARNs added in this setup. Amazon service is implemented in both OUTSCAN and HIAB.

Note

Amazon targets can only be added to OUTSCAN/HIAB via discovery scans. Only OUTSCAN is Whitelisted by Amazon as an authorized scanner, and scanning from HIAB may require additional authorization from Amazon.

Set Up Amazon

To setup Amazon:

  1. Go to Main Menu > Settings > Integrations to open the Integration Settings window.
  2. Select the Amazon tab. 

    Set Up Amazon


Follow the below procedure to scan instances:

  1. To enable this feature, select the Enabled box.
  2. Create a new user role with the Account Id and External Id noted.

  3. Apply IAM policy given below for the role on Amazon cloud to grant access to the targets.

    {
   "Version": "2012-10-17",
   "Statement": [{
      "Sid": "Stmt1400711494000",
      "Effect": "Allow",
      "Action": [
         "ec2:DescribeInstances",
         "ec2:DescribeRegions",
         "elasticloadbalancing:DescribeLoadBalancers",
         "elasticloadbalancing:DescribeTargetGroups",
         "elasticloadbalancing:DescribeTargetHealth"
      ],
      "Resource": ["*"]
   }]
}

    Note

    Any role which gives you read-only access to the required Actions listed in the policy will work.

  4. Enter the Amazon Resource Name (ARN) for the newly created role in the table using + New button.
  5. Click Save to save the current settings.


References

AWS Documentation




Copyright

© 2024 Outpost24® All rights reserved. This document may only be redistributed unedited and unaltered. This document may be cited and referenced only if clearly crediting Outpost24® and this document as the source. Any other reproduction and redistribution in print or electronically is strictly prohibited without explicit permission.

Trademark

Outpost24® and OUTSCAN™ are trademarks of Outpost24® and its affiliated companies. All other brand names, product names or trademarks belong to their respective owners.


JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close