I have 2 separate AWS accounts and I would like to a Vuln scanner/IDS on one to

Question

I have 2 separate AWS accounts and I would like to a Vuln scanner/IDS on one to scan another.

One environment is a regular AWS account and the other is in AWS Gov Cloud. Due to limitations within Gov Cloud I was only able to install my IDS on the regular AWS account. I would like to scan my machines within the Gov Cloud from the regular account.

What's the best way to do this?

I was thinking about attaching public IP addresses to my Gov Cloud instances and creating a SG to only allow my IDS access. What is the best practice here? Is this an acceptable solution?

Note: I realize installing the IDS within Gov Cloud is ideal but the IDS license is already purchased and the AMI can only be shared with a regular account.

Explanation / Answer

I would first try to contact the vendor and explain to them what occurred so that they would re-do your license to allow you to move your scanner to where it should be. Most, if not all would do this.

Secondly, I don

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.