search
APISupportDashboard

AWS

You can import new assets directly from your AWS by giving Halo Security restricted read access.

Import assets directly from Route53, ElasticIP, and Elastic Load Balancer by integrating with AWS.

hashtag
Halo Security Setup

  1. Visit your Settings → Integrations → Addarrow-up-right.

  2. Add the AWS integration.

  3. Add a name for the integration.

  4. Enter your AWS account information and click Save Changes.

circle-info

Keep this page open while configuring the AWS permissions.

hashtag
AWS Setup

  1. In your AWS dashboard navigate to Identity and Access Management (IAM)

  2. Click Roles then Create role

  3. Select AWS account

  4. Select Another AWS account and Require external ID. Add the external ID value found in your integration settingsarrow-up-right.

  5. Click Next

  6. On Add permissions click Next

  7. Add Role name: HaloSecurity

  8. Add Description: Must remain in place for HaloSecurity to function correctly. Email [email protected] for assistance.

  9. Click Create role

  10. Select the role you just created: HaloSecurity

  11. Under Add permissions, select Create inline policy

  12. Click JSON and paste the custom policy provided below

  13. Click Next

  14. Add Policy name: HaloSecurity

  15. Click Create Policy

circle-check

Once you've created the policy, return to the Halo Security dashboard and click Run on the integration to confirm it is working correctly.

hashtag
Custom Policy JSON

hashtag
Monitor Dynamic IP Addresses

If you're connected with AWS, Halo Security can monitor assets with dynamic IP addresses by setting an AWS Instance ID for targets. For more information, see the Scan Configuration page.

hashtag
Sending Events to AWS

You can also send events from Halo Security to AWS, using the instruction below:

AWSchevron-right
PreviousGoogle CloudNextCloudflare

Last updated

Was this helpful?