Begin Scanning an Amazon S3 App

Secure your AWS S3 accounts and protect them from data exfiltration and malware propagation while adhering to AWS best practices for your security monitoring.
As you prepare to scan your Amazon S3 account, take note of the following values, as they are required to complete the setup of the Amazon S3 app within Aperture:
ItemDescription
AWS account ID
Required to enable the Amazon S3 Bucket created in CloudTrail.
Access key ID
Enables Aperture service permission to access Amazon S3.
Secret access key
The administrator root access key used to configure IAM services.
CloudTrail bucket name (or full path if the CloudTrail feature is already enabled)
Enables the Amazon S3 app to log management and data events to a CloudTrail bucket of your choice.
Region
A configured area in CloudTrail that is scanned.
Role
When scanning multiple AWS S3 accounts, each IAM role defines a set of permissions that grant access to actions and resources in AWS.

Related Documentation