Amazon Web Service announced three new improvements that make it convenient to get started with Amazon Inspector and operate security assessments. The users automatically configure the Amazon Inspector Assessments via AWS CloudFormation as the Amazon Elastic Cloud Compute instances that are deployed. The next step is to choose Amazon Linux Amazon Machine Image preinstalled with the Amazon Inspector Agent and operate security assessments without the need to manually install the agent. The Amazon Inspector now utilizes the Access Management service linked roles and AWS Identity so that means you can leave management and registration of IAM roles for Inspector to us.
AWS CloudFormation Support:-
Amazon Inspector resource group, Assessment templates and assessment targets can be now created by using the CloudFormation Templates. This will enable the users to automatically configure security assessments for the Elastic Cloud Compute instances as they are deployed. In the Amazon Cloud Template, you can also reset installation of the Inspector Agent on the Elastic Cloud Compute instances using the Agent Installation commands in the EC2 user data or AWS CloudFormation. An EC2 instance can be created in the CloudFormation template by utilizing the Amazon Machine Image with the Inspector Agent pre-installed.
Amazon Linux Amazon Machine Image with the Amazon Inspector Agent:-
When you are launching EC2 instances you can choose Amazon Linux 2017.09 Amazon Machine Image that is pre-installed with the Amazon Inspector Agent. Amazon Machine Image is now available on the Elastic Cloud Compute Console and the AWS marketplace allows you to quickly deploy a fleet of Elastic Cloud Compute instances that are ready to operate Inspector assessments. The Amazon Machine Image comes with a pre-installed with the Amazon Inspector Agent and is supported and provisioned by Amazon Web Service with no additional charge.
Service-Linked Roles:-
Amazon Inspector now uses the IAM service linked roles to define EC2 instances and tags for an assessment target where you no longer have to build and registers customers when they start using the Amazon Inspector and for the existing customers when the generate a new assessment template or assessment target.
No comments:
Post a Comment