Practitioner Level

Configuring Amazon Inspector with Systems Manager to Assess Application Compliance

2 hours

3 Learning Objectives

About this Hands-on Lab

The scenario requires you to properly configure Amazon Inspector. This entails creating an instance profile for an EC2 instance, which will allow the instance to be managed by Systems Manager. This is a prerequisite for Amazon Inspector. This hands-on lab provides an introduction to AWS Security Hub and how it can be used to analyze the security of an AWS account. You can view this hands-on lab as a Security Hub quick start guide.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Launch EC2 Instance

Launch an EC2 instance using an Amazon Linux 2 AMI.
Accept the default for the SSH port ingress of 0.0.0.0/0.

Enable Amazon Inspector

Enable Amazon Inspector.
Run the SSM Automation to troubleshoot the EC2 instance.

Create an Instance Profile and Attach to EC2 Instance

In IAM, create an instance profile with an SSM Management policy.
In EC2, attach the policy to the EC2 instance.

Contact Sales See Pricing

Additional Resources

Scenario

After a company audit, you have been tasked with strengthening the security posture of the company AWS account. You have proposed AWS Security Hub as a tool to tighten up security. You will configure Security Hub, review the initial findings, and then create resources that may have some security holes to show the power of Security Hub in identifying those holes.

Lab Setup

Please log in to the lab environment with the cloud_user credentials provided. Ensure you are using the us-east-1 Region throughout the lab.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.