Amazon Inspector integrations
Amazon Inspector integrates with other Amazon services. These services can ingest data from Amazon Inspector, so you can view your findings in different ways. Review the following integration options to learn more.
Using Amazon Inspector with Amazon Organizations
Amazon Organizations helps you centrally manage and govern your Amazon environment. You can use Amazon Organizations policies to enable and manage Amazon Inspector across multiple accounts in your organization automatically.
Amazon Inspector organization policies allow you to:
-
Centrally enable Amazon Inspector scan types (EC2, ECR, Lambda, Code Repository) across your organization
-
Automatically apply Amazon Inspector enablement to new accounts joining the organization
-
Enforce consistent scanning coverage across organizational units
-
Prevent member accounts from disabling required scanning
Organization policies control resource type enablement, while delegated administrators retain control over scan configuration settings. For information about how organization policies interact with delegated administrator and member account permissions, see Managing multiple accounts in Amazon Inspector with Amazon Organizations. For detailed instructions on creating Amazon Inspector policies, see the Amazon Organizations documentation for Amazon Inspector policies.
Integrating Amazon Inspector with Amazon ECR
Amazon Elastic Container Registry (Amazon ECR) is an Amazon-managed container image registry that supports private registries. Amazon ECR private registries host container images in a highly-available and scalable architecture. You can use Amazon Inspector to scan container images residing in your Amazon ECR repository for vulnerable operating system packages and programming language packages. For more information, see Amazon Inspector integration with Amazon Elastic Container Registry (Amazon ECR).
Amazon Inspector integration with Amazon Security Hub
Amazon Security Hub provides a comprehensive view of your security state in Amazon and helps you check your environment against security industry standards and best practices Security Hub collects security data from Amazon accounts, services, and supported products. You can use Security Hub to ingest Amazon Inspector findings data and create a central location for findings in all of your integrated Amazon services and Amazon Partner Network products. For more information, see Amazon Inspector integration with Amazon Security Hub.