AWS Organizations discoveries

AWS Organizations discoveries enable automatic enumeration of all your AWS accounts accessible with the used credentials. It’s possible to configure these discoveries to automatically register these accounts as separate cloud assets.

Prerequisites

AWS credentials created with CloudFormation and the option organization. Indeed, AWS Organizations discoveries enumerate AWS accounts, so credentials with access to multiple accounts are required. The dedicated page contains instructions on how to obtain them.

Create the discovery

It’s possible to create an AWS Organizations discovery from the cloud assistant.

Alternatively:

  1. From Discoveries, click Add. Click AWS Organizations in the Cloud infrastructure category
  2. Enter the name of the scan
  3. Select optional groups that will be affected to the scan
  4. Choose the source of the scan (the Cyberwatch machine that will run the operation)
  5. Using the Credentials selector, pick the desired AWS credentials
  6. Choose a recurrence. The default value 0 days means the scan will be launched only once
  7. Click Confirm

When created, the discovery is immediately started as a background task. You may check state of the task any time from Discoveries.

Back to top