Skip to content

Commit 0ff8d88

Browse files
authored
Update Cloud Security setup docs (#37629)
* Batch of updates from UI review * Apply Jeff's suggestion
1 parent eb7777e commit 0ff8d88

2 files changed

Lines changed: 13 additions & 7 deletions

File tree

content/en/security/cloud_security_management/setup/agentless_scanning/enable.md

Lines changed: 12 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -129,6 +129,7 @@ Use CloudFormation if you already have an AWS account integrated with Datadog an
129129

130130
1. On the [Cloud Security Setup][1] page, click **Cloud Integrations** > **AWS**.
131131
1. At the bottom of the AWS section, click **Add AWS accounts by following these steps**. The **Add New AWS Account(s)** dialog is displayed.
132+
1. Select the **Add a Single AWS Account** and **CloudFormation** options.
132133
1. Select the AWS region where you want to create the CloudFormation stack.
133134
1. Select an API key that has [Remote Configuration][3] enabled.
134135
1. Choose whether to enable **Sensitive Data Scanner** for cloud storage. This automatically catalogs and classifies sensitive data in Amazon S3 resources.
@@ -140,8 +141,13 @@ Use CloudFormation if you already have an AWS account integrated with Datadog an
140141
1. Click the AWS account where you want to deploy the Agentless scanner, which opens the side panel.
141142
1. On the **Features** tab, click **Configure Agentless Scanning** or **Manage** to open the Agentless Scanning Setup modal.
142143
1. In the **How would you like to set up Agentless Scanning?** section, select **CloudFormation**.
144+
1. Select the AWS region that corresponds to the CloudFormation stack.
143145
1. Select an API key that has [Remote Configuration][3] enabled.
144-
1. Toggle the features you want to enable, such as **Vulnerability Management** or **Sensitive Data Scanner**.
146+
1. Copy the new application key Datadog generates.
147+
1. Choose to either:
148+
- Use an existing scanner, then select the scanner you want to use.
149+
- Deploy a nwe scanner.
150+
1. Toggle the features you want to enable, such as **Agentless Vulnerability Management** or **Sensitive Data Scanning for Cloud Storage**.
145151
1. Click **Launch CloudFormation Template**. A new window opens, displaying the AWS CloudFormation screen. Use the provided CloudFormation template to create a stack.
146152
1. Click **Done**.
147153

@@ -157,9 +163,9 @@ This setup deploys the delegate role required for [cross-account scanning](/secu
157163

158164
#### Prerequisites
159165

160-
1. Access to the AWS management account.
161-
1. [Trusted Access with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-enable-trusted-access.html) must be enabled for CloudFormation StackSets.
162-
1. Agentless Scanning is already configured in your central scanning account (see above).
166+
- Access to the AWS management account
167+
- [Trusted Access with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-enable-trusted-access.html) must be enabled for CloudFormation StackSets
168+
- Agentless Scanning already configured in your central scanning account ([see above](#aws-cloudformation-setup))
163169

164170
#### Deploy the StackSet
165171

@@ -194,7 +200,7 @@ The [Terraform Datadog Agentless Scanner module](https://github.com/DataDog/terr
194200

195201
1. On the [Cloud Security Setup][1] page, click **Cloud Integrations** > **AWS**.
196202
1. At the bottom of the AWS section, click **Add AWS accounts by following these steps**. The **Add New AWS Account(s)** dialog is displayed.
197-
1. Under **Choose a method for adding your AWS account**, select **Manually**.
203+
1. Select the **Add a Single AWS Account** and **Manually** options.
198204
1. Follow the instructions for installing the [Datadog Agentless Scanner module][2].
199205
1. Select the **I confirm that the Datadog IAM Role has been added to the AWS Account** checkbox.
200206
1. Enter the **AWS Account ID** and **AWS Role Name**.
@@ -207,7 +213,7 @@ The [Terraform Datadog Agentless Scanner module](https://github.com/DataDog/terr
207213
1. On the **Features** tab, click **Configure Agentless Scanning** or **Manage** to open the Agentless Scanning Setup modal.
208214
1. In the **How would you like to set up Agentless Scanning?** section, select **Terraform**.
209215
1. Follow the instructions for installing the [Datadog Agentless Scanner module][2].
210-
1. Select the **I confirm the Terraform module is installed** checkbox.
216+
1. Select the **I confirm the Datadog Agentless Scanner was installed using Terraform** checkbox.
211217
1. Click **Done**.
212218

213219
[1]: https://app.datadoghq.com/security/configuration/csm/setup

layouts/shortcodes/csm-agentless-azure-resource-manager.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -10,7 +10,7 @@ Complete the following steps to enable Agentless Scanning for your Azure subscri
1010
1. On the **Features** tab, click **Configure Agentless Scanning** or **Manage** to open the Agentless Scanning Setup modal.
1111
1. Under **How would you like to set up Agentless Scanning?**, select **Azure Resource Manager**.
1212
1. Select an **API key** that has [Remote Configuration](/remote_configuration) enabled.
13-
1. Select An application key.
13+
1. Select an application key.
1414
1. Click **Launch Azure Resource Manager** to be redirected to the Azure portal.
1515

1616
##### Azure portal

0 commit comments

Comments
 (0)