| Note |
|---|
To fully use this screen, you must add the following permissions to your account:
|
...
You can use the Cloud Connections screen to sync your public cloud account into the Armor Management Portal (AMP). Afterwards, you can use AMP to:
- Collect and store logs with the Log Relay add-on product
View the security status of your instance in the Virtual Machines screen
Note While all instances from your public cloud account will appear in the Virtual Machines screen, you should only focus on the security status for the instances that contain the Armor agent.
- Add AWS Security Hub feature to your public cloud account.
...
The Cloud Connections screen displays the public cloud accounts you have synced.
...
This column displays the descriptive name for your account.
You can also click the arrow to see which Armor services are associated with the account.
...
This column displays the ID for your public cloud account.
...
You can use the Cloud Connections screen to sync your AWS public cloud environment with the Armor Management Portal (AMP).
To complete these instructions, you must be able to access your AWS console.
| Note |
|---|
Armor will generate an External ID for every new Cloud Connection account. As result, an incomplete cloud connection account will be listed in the table as (Pending Connection). You can click this entry in order to continue with the cloud connection creation process. |
...
- The Armor's AWS Account Number and External ID fields are pre-populated.
...
- Once the newly added cloud connections gathers data, the instance will appear in the Virtual Machines screen.
...
In this step, you will enable AWS Security Hub in the desired AWS regions; this action will capture the findings from Security Hub in every configured region.
...
After you add your public cloud account into the Armor Management Portal (AMP), you can view the corresponding instances (and their security status) in the Virtual Machines screen.
| Note |
|---|
| The Cloud Connection screen simply lists the synced public cloud account; the Virtual Machines screen lists all the instances listed in that public cloud account. |
- In the Armor Management Portal (AMP), in the left-side navigation, click Infrastructure.
- Click Virtual Machines.
...
The operating system associated with the instance
(For AWS, the associated AMI is listed)
...
The security group that corresponds to your AWS instance.
- This column will only appear to AWS users.
- This column will only appear if you have selected the EC2 Metadata and orchestration option.
...
The keypair that corresponds to your AWS instance.
- This column will only appear to AWS users.
- This column will only appear if you have selected the EC2 Metadata and orchestration option in the Cloud Connections screen..
...
The security status of the instance, in relation to the installed agent. There are three states:
- Unprotected indicates the agent is not installed in the instance.
- Needs Attention indicates that the agent is installed, but has not properly communicated (heartbeated) with Armor.
- OK indicates that the agent is installed and has communicated (hearbeated) with Armor.
...
If you do not see any data in the Cloud Connections screen, consider that:
- You do not have permission to view log data.
- You must have the Read Cloud Connections and Writer Cloud Connections permissions enabled to view log data. Contact your account administrator to enable this permission. To learn how to update you permissions, see Roles and Permissions.
...
To specifically sync your AMP account with AWS Security Hub, see Create a Cloud Connection for AWS Security Hub.
...