This document applies to Classic/Legacy Integrations. You may continue to use these integration configurations. While no active development is happening for these integrations, we continue to provide Classic/Legacy Integrations in the product. You do not have to move to MSI Integrations. If your support engineer or TSC recommends or you choose to move to MSI Integrations, you can take advantage of the latest features and functionality. For more information, see the MSI Integration documentation in the Integrations Overview.
This requires the Cloud Validation license.
Update AWS
You must have an AWS account.
- Create the API credentials and note the Access Key and Secret Access Key.
Update the Validation Platform
Prerequisites
Information to gather before you start:
Add the AWS account to your Allow list.
- Know your Amazon region.
The following regions are supported:
- ap-northeast-1
- ap-northeast-2
- ap-northeast-3
- ap-southeast-1
- ap-southeast-2
- ap-south1
- ca-central-1
- eu-central-1
- eu-west-1
- eu-west-2
- eu-west-3
- sa-east-1
- us-east-1
- us-east-2
- us-west-1
- us-west-2
- us-gov-east-1
- us-gov-west-1See the AWS documentation for information on the different regions and their full names.
- Have the Access key and the Secret access key
Configuration
To add the AWS CloudTrail integration
Go to Settings > Integrations.
Click Add Integration > CloudTrail.
- Enter the Access key Id and the Secret access key.
- Select the Amazon Region.
- Expand Advanced options.
- Set the Query time.
- (Optional) Set the Delay time.
- (Optional) Select Discover network devices automatically.
- Specify the Query interval.
- (Optional) Set the Event Time Adjustment.
- Assign a Name.
- (Optional) Choose whether to save suspicious events.
- Click Submit.
Verify connectivity
To verify connectivity to AWS CloudTrail
- Click Test to verify that the keys and region information is correct.