AnsweredAssumed Answered

Policy Compliance scan for AWS

Question asked by Chris Carney on Jul 7, 2015

Need some help with this one... I have a small very dynamic AWS VPC environment that is running EC2 instances with Unix based OS's. I'm using Qualys' pre-authorized scanner within this environment for unauthenticated VM scans via the EC2 connector. I would now like to run PC scans against these instances. I have created a Unix authentication record for this, however, it requires that I identify the IPs or Asset Group for the authentication record. The EC2 connector only applies a dynamic Asset Tag to the instances and not an Asset Group so there is no efficient way of adding this to the Unix authentication record.  Does anyone have any ideas on how to make PC scanning in this kind of environment work?