Walkthrough: Onboarding the AWS Cloud connector

This walkthrough shows you how to onboard the AWS Cloud connector to specify and evaluate the AWS account details against the OOB AWS policies at a scheduled interval.

The AWS Cloud connector, hosted by BMC Helix Cloud Security in the AWS platform, gathers data about the following AWS services:

  • CloudTrails domains
  • ElasticSearch
  • Identity and Access Management (IAM) credentials
  • Password Policy
  • Rapid Database System (RDS)
  • S3 bucket
  • SecurityGroups
  • Key Management Service (KMS)
  • Virtual Private Cloud (VPC)
  • EC2-ELB
  • EC2-Instances
  • Simple Notification Service (SNS)
  • Config

Scenario

A company's Line Of Business (LOB) IT personnel and compliance officers are responsible for ensuring that their Amazon Web Services (AWS) account adheres to industry and organizational standards. To begin this analysis, they want to set up a AWS Cloud connector that will enable them to collect data so that they can evaluate resources and remediate any violations against AWS polices.

Where to go from here

For an example of an AWS use case where compliance violations are identified, see Walkthough: Identifying AWS compliance violations.

To learn more about all the options available in Cloud Security for working with connectors, see Managing-connectors.

Back to top

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*