Amazon Inspector2 (inspector2)

Additions

Actions

• CreateConnector
  
  • Description:  Grants permission to create a connector to scan resources from a third-party cloud provider
  • Access:  Write
  • Resources: 

    Name: Connector

    Required: Yes

  • Conditions: 

    aws:RequestTag/${TagKey}

    aws:TagKeys

• DeleteConnector
  
  • Description:  Grants permission to delete a connector configured for scanning resources from a third-party cloud provider
  • Access:  Write
  • Resources: 

    Name: Connector

    Required: Yes

• ListConnectorScanConfigurations
  
  • Description:  Grants permission to list scan configurations for connectors
  • Access:  List
• ListConnectors
  
  • Description:  Grants permission to list connectors configured for scanning resources from third-party cloud providers
  • Access:  List
• UpdateConnector
  
  • Description:  Grants permission to update a connector configured for scanning resources from a third-party cloud provider
  • Access:  Write
  • Resources: 

    Name: Connector

    Required: Yes

  • Conditions: 

    aws:ResourceTag/${TagKey}

    aws:RequestTag/${TagKey}

    aws:TagKeys

• UpdateConnectorScanConfiguration
  
  • Description:  Grants permission to update scan configuration settings for resources associated with a connector
  • Access:  Write

Resources

• Connector
  
  • Arn:  arn:${Partition}:inspector2:${Region}:${Account}:connector/${ConnectorId}
  • Conditions: 

    aws:ResourceTag/${TagKey}