CMP supports real-time monitoring of Security Policy and Inventory. This feature is available for Azure and AWS subscriptions. CMP uses different services of AWS and Azure to accomplish this:
-
AWS Config and CloudTrail services of AWS for real-time monitoring of AWS Inventory and Security Policy
-
Event Hub service of Azure for real-time monitoring of Azure Inventory and Security Policy
Config Stream (AWS only)
To configure the real-time security policy monitoring for AWS,
-
Login as Tenant Admin.
-
Navigate to GOVERNANCE & SECURITY > SETTINGS. The discovery page with four tabs is displayed.
3. Click the Config Stream tab. The associated section is displayed.
4. Navigate to the Configuration Stream subsection and enter an appropriate name in the Topic Display Name text box.
5. Click Check Receiver Status. It validates the SQS configured in System Setting for Config Stream. On successful validation, the Create SNS Topic button is enabled.
6. Click Create SNS Topic to create the SNS topic.
To configure the Continuous Inventory Monitoring,
-
Login to CMP portal as Tenant Admin.
-
Navigate to GOVERNANCE & SECURITY > SETTINGS. The discovery page with four tabs is displayed.
Comments
0 comments
Please sign in to leave a comment.