Amazon EBS Volumes
Last updated
Last updated
The Console Service creates an EC2 instance in the EBS Volume region as a Scanning Agent
The Agent creates an EBS Snapshot
The EBS Snapshot is scanned by the Scanning Agent
Results are sent to CloudWatch
Job status and other scan details are sent to DyanamoDB
The Console service ingests details from CloudWatch and DyanamoDB, and when the scan is done, scanning architecture and the EBS Snapshot are torn down
The EBS Protection page will show you any EBS volumes that are associated with the account that you have deployed our solution in, as well as volumes from any accounts linked to your console. Here you'll be able to create Antivirus scanning and Data Classification schedules for EBS Volumes.
Select the EBS volume(s) you want to protect through a schedule
Click actions and select either Create AV Schedule or Create DC Schedule
You can select any additional EBS volumes and add EFS volumes or S3 buckets to the schedule through the schedule popup
Once you have all of the resources you want to add to a schedule selected, click on the Create Schedule tab
Name your schedule, add the scan period and make any additional changes you need
Click Save once you're done
After your schedule is created you'll want to go to the Schedules page and activate the schedule.
Now your schedule will run per the scan period that you originally configured. If you need to add or remove volumes, or make any other configuration changes you can always edit the schedule on the Schedules page.
The schedule icons shown below will reflect whether a bucket is associated with a schedule and whether that schedule is active or not.
In addition to scheduled scans, you can select and perform on-demand AV and DC scanning for EBS volumes.
If you do not have a VPC and subnets staged in the region your EBS Volumes exist in, you will be asked to set a VPC and subnets when activating the schedule. You can learn more about staging regions in the page.
You can create a schedule within the , or you can create a schedule for EBS volumes directly from the EBS Volumes page.
Protected by Active Schedule -
Part of an Inactive Schedule -
Not a Part of any Schedule -
