You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: content/en/security/cloud_security_management/setup/agentless_scanning/enable.md
+12-6Lines changed: 12 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -129,6 +129,7 @@ Use CloudFormation if you already have an AWS account integrated with Datadog an
129
129
130
130
1. On the [Cloud Security Setup][1] page, click **Cloud Integrations** > **AWS**.
131
131
1. At the bottom of the AWS section, click **Add AWS accounts by following these steps**. The **Add New AWS Account(s)** dialog is displayed.
132
+
1. Select the **Add a Single AWS Account** and **CloudFormation** options.
132
133
1. Select the AWS region where you want to create the CloudFormation stack.
133
134
1. Select an API key that has [Remote Configuration][3] enabled.
134
135
1. Choose whether to enable **Sensitive Data Scanner** for cloud storage. This automatically catalogs and classifies sensitive data in Amazon S3 resources.
@@ -140,8 +141,13 @@ Use CloudFormation if you already have an AWS account integrated with Datadog an
140
141
1. Click the AWS account where you want to deploy the Agentless scanner, which opens the side panel.
141
142
1. On the **Features** tab, click **Configure Agentless Scanning** or **Manage** to open the Agentless Scanning Setup modal.
142
143
1. In the **How would you like to set up Agentless Scanning?** section, select **CloudFormation**.
144
+
1. Select the AWS region that corresponds to the CloudFormation stack.
143
145
1. Select an API key that has [Remote Configuration][3] enabled.
144
-
1. Toggle the features you want to enable, such as **Vulnerability Management** or **Sensitive Data Scanner**.
146
+
1. Copy the new application key Datadog generates.
147
+
1. Choose to either:
148
+
- Use an existing scanner, then select the scanner you want to use.
149
+
- Deploy a nwe scanner.
150
+
1. Toggle the features you want to enable, such as **Agentless Vulnerability Management** or **Sensitive Data Scanning for Cloud Storage**.
145
151
1. Click **Launch CloudFormation Template**. A new window opens, displaying the AWS CloudFormation screen. Use the provided CloudFormation template to create a stack.
146
152
1. Click **Done**.
147
153
@@ -157,9 +163,9 @@ This setup deploys the delegate role required for [cross-account scanning](/secu
157
163
158
164
#### Prerequisites
159
165
160
-
1. Access to the AWS management account.
161
-
1.[Trusted Access with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-enable-trusted-access.html) must be enabled for CloudFormation StackSets.
162
-
1. Agentless Scanning is already configured in your central scanning account (see above).
166
+
- Access to the AWS management account
167
+
-[Trusted Access with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-enable-trusted-access.html) must be enabled for CloudFormation StackSets
168
+
- Agentless Scanning already configured in your central scanning account ([see above](#aws-cloudformation-setup))
163
169
164
170
#### Deploy the StackSet
165
171
@@ -194,7 +200,7 @@ The [Terraform Datadog Agentless Scanner module](https://github.com/DataDog/terr
194
200
195
201
1. On the [Cloud Security Setup][1] page, click **Cloud Integrations** > **AWS**.
196
202
1. At the bottom of the AWS section, click **Add AWS accounts by following these steps**. The **Add New AWS Account(s)** dialog is displayed.
197
-
1.Under **Choose a method for adding your AWS account**, select**Manually**.
203
+
1.Select the **Add a Single AWS Account** and**Manually** options.
198
204
1. Follow the instructions for installing the [Datadog Agentless Scanner module][2].
199
205
1. Select the **I confirm that the Datadog IAM Role has been added to the AWS Account** checkbox.
200
206
1. Enter the **AWS Account ID** and **AWS Role Name**.
@@ -207,7 +213,7 @@ The [Terraform Datadog Agentless Scanner module](https://github.com/DataDog/terr
207
213
1. On the **Features** tab, click **Configure Agentless Scanning** or **Manage** to open the Agentless Scanning Setup modal.
208
214
1. In the **How would you like to set up Agentless Scanning?** section, select **Terraform**.
209
215
1. Follow the instructions for installing the [Datadog Agentless Scanner module][2].
210
-
1. Select the **I confirm the Terraform module is installed** checkbox.
216
+
1. Select the **I confirm the Datadog Agentless Scanner was installed using Terraform** checkbox.
0 commit comments