Fortinet black logo

Online Help

Enable Amazon Inspector

Copy Link
Copy Doc ID 73ddbf8a-9129-11ec-9fd1-fa163e15d75b:648012

Enable Amazon Inspector

Amazon Inspector requires administrator or user with specific role/policy to enable.

To check the credentials, follow these steps:

  1. Log in Amazon AWS console using your AWS account: https://console.aws.amazon.com/.
  2. Search and click on IAM.
  3. Click on Roles on the left menu.
  4. Search "Inspector" and click on AWSServiceRoleForAmazonInspector.
  5. If AWSServiceRoleForAmazonInspector Role does not exist, follow the steps in Create Amazon Inspector Role (optional) to create Amazon Inspector Role.
  6. Make sure AmazonInspectorServiceRolePolicy existed under permission.

After you verified that the configuration of AWSServiceRoleForAmazonInspector Role, continue here to enable Amazon Inspector.

Create Amazon Inspector Role (optional)

If you have never used Amazon Inspector, you will need to create an Amazon Inspector Role first. Before adding Amazon Inspector Role, make sure you are the AWS administrator or user with administrator privilege.

  1. Log in Amazon AWS console using your AWS account: https://console.aws.amazon.com/.
  2. Search and click on IAM.
  3. Click on Roles on the left menu, and click Create role button.
  4. Click Inspector under Or select a service to view its use cases, then scroll down to click Next:Permissions
  5. .

  6. In Create Role, you should see AmazonInspectorServiceRolePolicy in Policy name column, and click Next:Tag.
  7. Continue and click Next:Review in Add tags page.
  8. The default Role name set by AWS is AWSServiceRoleForAmazonInspector, click Create role to finish creating the Inspector Role.

Enable Amazon Inspector

Once the user has Amazon Inspector role/policy, now log into Amazon Inspector to enable it.

  1. Search and click on Inspector from AWS Console page.
  2. Click on the left banner and click Switch to Inspector Classic to be switched to Inspector classic view.
  3. Select the region which you would like to monitor on the top right corner.
  4. Click on Get Started.
  5. Click Run Weekly (recommended)button, with Network Assessments and Host Assessments selected.
  6. Click OK when asking for confirmation.
  7. Now Amazon Inspector is enabled. It will produce detailed list of security findings that is organized by level of severity.

Enable Amazon Inspector

Amazon Inspector requires administrator or user with specific role/policy to enable.

To check the credentials, follow these steps:

  1. Log in Amazon AWS console using your AWS account: https://console.aws.amazon.com/.
  2. Search and click on IAM.
  3. Click on Roles on the left menu.
  4. Search "Inspector" and click on AWSServiceRoleForAmazonInspector.
  5. If AWSServiceRoleForAmazonInspector Role does not exist, follow the steps in Create Amazon Inspector Role (optional) to create Amazon Inspector Role.
  6. Make sure AmazonInspectorServiceRolePolicy existed under permission.

After you verified that the configuration of AWSServiceRoleForAmazonInspector Role, continue here to enable Amazon Inspector.

Create Amazon Inspector Role (optional)

If you have never used Amazon Inspector, you will need to create an Amazon Inspector Role first. Before adding Amazon Inspector Role, make sure you are the AWS administrator or user with administrator privilege.

  1. Log in Amazon AWS console using your AWS account: https://console.aws.amazon.com/.
  2. Search and click on IAM.
  3. Click on Roles on the left menu, and click Create role button.
  4. Click Inspector under Or select a service to view its use cases, then scroll down to click Next:Permissions
  5. .

  6. In Create Role, you should see AmazonInspectorServiceRolePolicy in Policy name column, and click Next:Tag.
  7. Continue and click Next:Review in Add tags page.
  8. The default Role name set by AWS is AWSServiceRoleForAmazonInspector, click Create role to finish creating the Inspector Role.

Enable Amazon Inspector

Once the user has Amazon Inspector role/policy, now log into Amazon Inspector to enable it.

  1. Search and click on Inspector from AWS Console page.
  2. Click on the left banner and click Switch to Inspector Classic to be switched to Inspector classic view.
  3. Select the region which you would like to monitor on the top right corner.
  4. Click on Get Started.
  5. Click Run Weekly (recommended)button, with Network Assessments and Host Assessments selected.
  6. Click OK when asking for confirmation.
  7. Now Amazon Inspector is enabled. It will produce detailed list of security findings that is organized by level of severity.