To fully use this screen, you must add the following permissions to your account:
You can use the the Cloud Connections screen screen to sync your public cloud account into the Armor Management Portal (AMP). Afterwards, you can use AMP to:
- Collect and store logs with the the Log Depot Relay add-on product
View the security status of your instance in the the Virtual Machines screen screen
While all instances from your public cloud account will appear in the Virtual Machines screen, you should only focus on the security status for the instances that contain the Armor agent.
- Add AWS Security Hub feature to your public cloud account.
Review Cloud Connections screen
The Cloud Connections screen displays the public cloud accounts you have synced.
|Account Name||A |
This column displays the descriptive name for your account.
You can also click the arrow to see which Armor services are associated with the account.
|Provider||This column displays the public cloud provider.|
The This column displays the ID for your public cloud account.
Currently, the Cloud Connections screen supports Amazon Web Services (AWS).
You can use this screen to collect CloudTrail logs and EC2 instance logs.
|Status||This column displays the connection status between your Armor accounts and your public cloud account.|
Before you begin, to collect CloudTrail logs, you must have the Log Depot add-on product enabled.
To learn how to enable Log Depot, see Log Depot.
You can use the Cloud Connections screen to sync your AWS public cloud environment into with the Armor Management Portal (AMP).
In this sectionTo complete these instructions, you will need must be able to access your AWS console to complete the configuration process.
Armor will generate an External ID for every new Cloud Connection account. As result, an incomplete cloud connection account will be listed in the table as (Pending Connection). You can click this entry in order to continue with the cloud connection creation process.
After you add your public cloud account into the Armor Management Portal (AMP), you can view the corresponding instances (and their security status) in the the Virtual Machines screen screen.
|The Cloud Connection screen simply lists the synced public cloud account; the Virtual Machines screen lists all the instances listed in that public cloud account.|
- In the Armor Management Portal (AMP), in the left-side navigation, click click Infrastructure.
- Click Click Virtual Machines.
|Name||The name of the instance from your public cloud account|
|Type||The type of instance, specific to the offerings offered by your public cloud provider, such as en EC2 instance for AWS|
|Provider||The public cloud provider for the instance|
The operating system associated with the instance
(For AWS, the associated AMI is listed)
|Date Created||The date the instance was created in your public cloud account|
|Security Group||For AWS instances only|
|Keypair||For AWS instances only|
The security group that corresponds to your AWS instance.
The keypair that corresponds to your AWS instance.
The security status of the instance, in relation to the installed agent. There are three states:
|Power||The power status of the instance, either powered on (green) or powered off (red)|
- Post Cloud Connections
- Delete Cloud Connections
- Get Cloud Connections
- Get Cloud Connections (Status)
- Get Cloud Connections (Service Types)
Troubleshoot Cloud Connections screen
Troubleshooting Cloud Connections screen Troubleshooting Cloud Connections screen
|Troubleshooting Cloud Connections screen|
|Troubleshooting Cloud Connections screen|
If you do not see any data in the the Cloud Connections screen screen, consider that:
- The selected date range does not contain any data.
- Select a difference date range.
- You do not have permission to view log data.
- You must have the permission the Read Cloud Connections and Writer Cloud Connections permissions enabled to view log data. Contact your account administrator to enable this permission. To learn how to update you permissions, see Roles and Permissions.
You did not order the Log Depot add-on product. You did not properly sync Log Depot to collect your log files. The selected date range does not contain any data. You do not have permission to view log data. You must have the Write LogManagement permission enabled to access the Log Search section. Contact your account administrator to enable this permission. To learn how to update you permissions, see Roles and Permissions.
update the virtual machine screen for new colums
This is in the VM page,
Date created “ when your AWS feature was created inAWS
Security groups from AWS
Update VM page; new columns for both complete and anywhere
Ellipses includes AWS name
To specifically sync your AMP account with AWS Security Hub, see Create a Cloud Connection for AWS Security Hub.