Cloud Provider Settings
On the Cloud Provider page, you can enable cloud integration.
Usually, Scan Agents are manually installed by users. And, the host machines of those Agents should be kept running in order to run a Scan with an Agent on those machines. When a Cloud Provider is configured (currently, only Amazon Web Services is supported), Invicti will also scale the Scan Agents. This means that when a Scan is started, Invicti automatically starts an instance, runs the Scan, and then terminates that instance.
Cloud Provider Settings is available in the Invicti Enterprise On-Premises Edition only.
For further information, see Overview of Settings in Invicti Enterprise, Invicti Editions, and Configuring Invicti Enterprise for Amazon Web Services.
Cloud Provider Settings Fields
This table lists and explains the fields on the Cloud Provider Settings page.
Field | Description |
Website Access Key | This is the access key of a Web Application-specific AWS IAM user. |
Website Secret Key | This is the secret key of a Web Application-specific AWS IAM user. |
Agent Access Key | This is the access key of an Agent-specific AWS IAM user. |
Agent Secret Key | This is the secret key of an Agent-specific AWS IAM user. |
Access keys and secret keys are special tokens that allow our services to communicate with your AWS account through AWS API. | |
Region Endpoint Name | These are the regions that can be used while constructing the AWS client e.g. us-east-1. |
Scan Data Bucket Name | This is the name of the cloud storage bucket (S3) used for scan data storage. |
Screenshot Bucket Name | This is the name of the cloud storage bucket (S3) used for screenshots storage. |
EC2 Windows Agent Image ID | This is the AWS EC2 Agent image ID. |
EC2 Linux Agent Image ID | This is the AWS EC2 Agent image ID. |
EC2 Agent Instance Assigned Name | This is the Name Tag of the created AWS EC2 Agent instance. |
EC2 Agent Instance Security Group | This is the AWS EC2 Agent instance security group name. |
EC2 Agent InstanceType | This is the AWS EC2 Agent instance type name used in scans, for example, ‘m5.large’. |
EC2 Subnet ID | This is the AWS EC2 Agent VPC Subnet ID. |
EC2 Agent IAM Profile | This is the IAM Role in AWS. (Optional) |
EC2 Key Pair Name | This is the name of the key pair used when launching EC2 instances. |
How to enable cloud integration
- Log in to Invicti Enterprise.
- From the main menu, select Settings > Cloud Provider.
- Select the Cloud Integration checkbox. Additional fields are displayed.
- Complete the fields.
- Select Save.