Exploring AWS !!
Day 63
Amazon Inspector Classic(AMS SSPS)
- Security assessment service which helps maintain security and compliance of applications.
- Automatically assesses applications for exposure, vulnerabilities, and deviations.
- After assessing, it produces a list of security findings in detail.
How do we request access for Inspector Classic in AMS (AWS Managed Services) account?
Request access to Inspector by submitting RFC with the management. This RFC provisions the customer_inspector_admin_role IAM role to your account. The role includes the AWS-managed AmazonInspectorFullAccess policy. Once provisioned in your account, you must onboard the role in your federation solution.
What are the restrictions in using inspector in AMS account?
No restrictions
Use the new Amazon Inspector in AMS
Now we can use the new Amazon Inspector in AMS account.
For Amazon Inspector Classic, the customer-inspector-admin-role-ssm-inspector-agent-policy and AmazonInspectorFullAccess were required. However, there has been an update to the SSPS role customer-inspector-admin-role, which now includes an additional policyAmazonInspector2FullAccess. This new policy allows API permissions for the new version of Amazon Inspector.