Configure Security Hub Integration (AWS account only)

If Security Hub Integration was not completed during the account onboarding, Security Hub Integration can be configured through the account setting.

1. Go to Cloud Protection > ADMIN > Cloud Accounts.



2. Select the AWS account to be configured, and click Action button and select Configure Security Hub Integration.



3. Follow the required configurations in AWS Security Hub and EventBridge Configuration to enable Amazon Guard Duty, Inspector, and Security Hub,
4. Go back to FortiCNP, select the Aggregation Region in Security Hub and click Next Step.



5. Click Go To AWS CloudFormation Guide to configure Security Hub Integration with CloudFormation.



6. A new page will pop up with AWS CloudFormation Guide, click Next at the bottom of each page until the last page, and click Create Stack.



7. Refresh the stack status page until the "FortiCNPSecurityHubIntegration" stack status shows "CREATE_COMPLETE".



8. Go back to FortiCNP Configure Security Hub Integration page, and click Next Step



9. Click Done to complete.

After the Security Hub Integration configuration is completed, with for 20 minutes and check if the account status checklist shows the Security Hub Integration is running correctly.