- Newest
- Most votes
- Most comments
Hello.
I don't think you need to install the Inspector agent if you use Amzon Inspector v2.
I think Amzon Inspector v2 can be used if SSM Agent is installed on EC2 and registered as a managed instance.
https://docs.aws.amazon.com/inspector/latest/user/getting_started_tutorial.html
Amazon Inspector can provide Common Vulnerabilities and Exposures (CVE) data for your EC2 instances only if the Amazon EC2 Systems Manager (SSM) agent is installed and activated. This agent is preinstalled on many EC2 instances, but you might need to activate it manually. Regardless of SSM agent status, all of your EC2 instances are scanned for network exposure issues. For more information about configuring scans for Amazon EC2, see Scanning Amazon EC2 instances. Amazon ECR and AWS Lambda function scanning do not require the use of an agent.
We assume that you are probably using Amazon Inspector Classic, in which case the Amazon Inspector agent is not available on Amazon Linux 2023.
https://docs.aws.amazon.com/inspector/v1/userguide/inspector_supported_os_regions.html
Relevant content
- asked 5 months ago
- asked a year ago
- asked 6 months ago
- AWS OFFICIALUpdated 7 months ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated 12 days ago
- AWS OFFICIALUpdated 2 years ago
Thank you very much for your response. SSM agent is running, but I got 2 question -
Thanks!
Reports can be output as JSON or CSV. As far as I know, I don't think it's possible to output directly to PDF. Therefore, I think you will need to output it as CSV and convert it to PDF yourself. https://docs.aws.amazon.com/inspector/latest/user/findings-managing-exporting-reports.html
EC2 scans are performed at the timings described in the document below. For example, a scan is performed when you start a new EC2 or install new software. https://docs.aws.amazon.com/inspector/latest/user/scanning-ec2.html#ec2-scan-behavior
Thanks! I did install new package with yum and replace some files on the machine, but looks like nothing is being updated, how may I see the last run of Amazon Inspector or run it manually like in Amazon Inspector Classic?