TOC & Recently Viewed

Recently Viewed Topics

Configure the Web Query Client Policy for AWS

Using the Client Policy Builder, you can create and modify policies for your LCE Web Query Client. The following steps are performed via the web interface on the LCE server that you configured your LCE Web Query Client to communicate with.

Steps

  1. Using the Client Policy Builder, create a policy for your LCE Web Query Client. This documentation includes a list of valid configuration items for the client policy.

    A Web Query Client policy for AWS requires you to add an AWS CloudTrail endpoint to the policy. You must provide the following:

    To add the endpoint:

    1. In the Basic pane of the Client Policy Builder, click the button in to add a group.

      The Add a new endpoint group window appears.

    2. Click the Add AWS CloudTrail endpoint button.

      A new AWS CloudTrail endpoint appears.

    3. In the Endpoint name box, enter a name that identifies the endpoint.
    4. Select the Active check box.
    5. In the Query interval box, enter the number of seconds between each query to the Salesforce API.
    6. In the Region box, enter the region defined in the AWS account.
    7. In the Access Key ID box, enter the Access Key ID for an IAM user.
    8. In the Secret Access Key box, enter the IAM Secret Access Key that corresponds to the Access Key ID.

    The following image is an example of a completed endpoint group.

    Note: You can add multiple endpoints to a single group. For example, one group could contain three AWS CloudTrail endpoints. Another group could contain a Salesforce endpoint, an AWS CloudTrail endpoint, and a Google Cloud endpoint.

  2. Assign the policy to the LCE Web Query Client.

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.