EC2 Scan - Scanning EC2 Instances in GovCloud

Looking for an overview on securing your Amazon AWS infrastructure? Go here.

Users can secure their AWS GovCloud using Qualys Virtual Scanner Appliance (qVSA). Depending on your type of platform (shared or private), you must follow the instructions below for the Shared Cloud platform (SCP) and Private Cloud platform (PCP) to get started securing the AWS GovCloud.

• Securing AWS GovCloud using qVSA on SCPs
• Securing AWS GovCloud using qVSA on PCPs

Securing AWS GovCloud using qVSA on SCPs

1.  Search for Qualys Virtual Scanner Appliance AMI from your GovCloud account by typing 'qVSA'.
    
2.  Select AMI and follow the instructions to launch the VM scanner.
    
3.  Configure the Virtual Scanner Instance as described here.
    
4.  You’re ready to start scanning!
   

Note: Make sure you have AWS GovCloud marketplace access.

Securing AWS GovCloud using qVSA on PCPs

1.  Contact your Qualys TAM or Qualys Support requesting access to a) GovCloud Feature and b) Qualys Virtual Scanner Appliance AMI.
    
2.  Include your AWS Account ID under which you would be running the scanner, access to the AMI is enabled by Qualys support for specific Account IDs.
    
3.  Qualys Support will send you a mail with approval and access information.
    
4.  Create a Qualys Virtual Scanner Instance with the qVSA AMI, which will now be available under MyImages section in the Create Instance wizard. (If you need to search, use the keyword "qVSA" to find the Qualys scanner).
    
5.  Configure the Virtual Scanner Instance as described here.
    
6.  You’re ready to start scanning!