AWS Integration
Connect your AWS accounts to scan for security misconfigurations and deploy infrastructure.
Prerequisites
- An AWS account with IAM credentials
- An Access Key ID and Secret Access Key with sufficient read permissions for scanning
Connect AWS
- Go to Configuration > Integrations
- Click “Add Integration” and select AWS
- Enter your Access Key ID and Secret Access Key
- Amnify validates the credentials and extracts your AWS Account ID
Use credentials scoped to the minimum permissions needed. For scanning, Amnify requires read-only access to evaluate your resource configurations.
What gets scanned
Amnify evaluates hundreds of security checks across AWS services including:
- Compute: EC2, Lambda, ECS, EKS
- Storage: S3, EBS, EFS
- Databases: RDS, DynamoDB, ElastiCache
- Networking: VPC, Security Groups, CloudFront, Route 53
- Identity & Access: IAM users, roles, policies, MFA
- Observability: CloudWatch, CloudTrail
- Security: GuardDuty, Security Hub, KMS, Secrets Manager
- And many more
Compliance frameworks
AWS scans are mapped to:
- CIS AWS Foundations Benchmark
- SOC2
- PCI-DSS
- MITRE ATT&CK
- ISO 27001
- HIPAA
- NIST 800-53
- And more
Deploy support
AWS is fully supported for infrastructure deployment. You can deploy EC2 instances, VPCs, RDS databases, and more using Terraform templates.
