HumayunM
Reputation: 554
AWS Inspector connection with EC2
How does Amazon Inspector manage to connect with awsagent(Inspector Agent) without any IAM Role?
This is the setup I have:
- EC2 with Inspector agent installed via userdata
- The EC2 with No Role
- AWS Inspector with auto-created service linked role AWSManagedPolicy: AmazonInspectorServiceRolePolicy
I have read the AmazonInspectorServiceRolePolicy and it only has Read/List rights to EC2. I can see Inspector can still connect and run Hot Assessments. What is giving inspector rights to ssh/run commands into EC2?
Upvotes: 0
Views: 287
Answers (0)
Related Questions
- Is there any API to get AWS inspector findings data
- I cannot install Amazon Inspector
- Installing Amazon Inspector Service
- Not Able to create IAM in AWS Educate
- AWS IAM CLI tag-user
- IAM Policy isn't allowing EC2 access
- How to connect to AWS Elasticsearch from EC2 using IAM?
- AWS IAM requests
- AWS Inspector Agent Unhealthy: Account not registered in this AWS region
- CloudWatch agent doesn't recognize presence of IAM Role