Up to Documentation
Creating an AWS Read-only User for JASP
One way to allow JASP to scan your AWS environment is for you to provide the credentials (access key and secret) for a read-only user for your environment.
This document provides instructions for creating a read-only user.
Configure JASP access to AWS
First, navigate to the IAM console and login with credentials permitted to create policies and users. Then follow the steps below to create a JASP user:
- Navigate to the user management page by selecting Users from the side menu.
- Select Add user
- Provide a user name (jasp or jasp-worker is suggested, but you may use any name that works best for your organization).
- Mark the account for Programmatic access.
- Select Next: Permissions
- On the set permissions page, select Attach existing policies directly.
- Select the following AWS managed polices
- ReadOnlyAccess: provides read-only access to all AWS services and resources.
- SecurityAudit: provides read-only permissions useful for conducting security audits.
- Select Next: Review to continue.
- Ensure the user looks similar to the image below:
- Select Create User to continue.
- Retain the Access key ID and Secret access key from the final add user page. These will be needed to setup your environment in JASP.
Configure AWS environment in JASP
- Login to JASP
- Select your AWS environment (or create a new one).
- Select Configure env access
- Under “Option 1”, enter the access key and secret retained earlier. (Do not fill in anything for the Role ARN under “Option 2”.)
- Click Submit to save the credentials.