Ensure that the new version of Amazon Inspector is enabled in order to help you improve the security and compliance of your AWS cloud environment. Amazon Inspector 2 is a vulnerability management solution that continually scans scans your Amazon EC2 instances, ECR container images, and Lambda functions to identify software vulnerabilities and instances of unintended network exposure.
This rule can help you work with the AWS Well-Architected Framework.
This rule resolution is part of the Conformity Security & Compliance tool for AWS.
Amazon Inspector 2 introduces a vulnerability management solution that conducts ongoing scans of AWS workloads to identify software vulnerabilities and potential network vulnerabilities. The new version of Amazon Inspector has undergone a comprehensive rearchitecture, streamlining vulnerability management by automating processes and promptly delivering findings to swiftly detect emerging vulnerabilities. Once enabled, the new Inspector service diligently locates all your workloads and maintains a continuous cycle of vulnerability scans for both software and unintended network exposures.
Audit
To ensure that Amazon Inspector 2 is enabled in your AWS cloud environment, perform the following actions:
Remediation / Resolution
To enable Amazon Inspector 2 for your AWS cloud environment, perform the following actions:
References
- AWS Documentation
- Amazon Inspector
- Amazon Inspector FAQs
- Getting started with Amazon Inspector
- AWS announces the new Amazon Inspector for continual vulnerability management
- AWS Command Line Interface (CLI) Documentation
- batch-get-account-status
- enable
- enable-delegated-admin-account
- associate-member