Skip to content

AWS Quick-start

You can use Quick-start to easily add environments to Sophos Cloud Optix.

Using a simple CloudFormation template, Quick-start creates a read-only IAM role in your AWS account. Sophos Cloud Optix uses this role to access information via APIs to monitor security.

If you add an environment with Quick-start, and later want to use advanced features with the same environment, use the AWS CLI script setup. You don't have to remove the environment first. See Use AWS CloudShell or AWS CLI script.

For more detail on the differences between Quick-start and full setup methods, see Add your AWS environment.

Note

Quick-start can't be used with the Sophos MDR integration. This requires Activity Logs and Flow Logs to receive anomaly alerts from Sophos Cloud Optix. To use the Sophos MDR integration, use one of the full setup options.

Use Quick-start

To use Quick-start, do as follows:

  1. Sign in to your AWS console with the account you want to add to Sophos Cloud Optix
  2. Sign in to Sophos Cloud Optix.
  3. Click Add Environments.
  4. Click AWS > AWS Quick-start.
  5. Follow the instructions on the screen to add your AWS account to Sophos Cloud Optix.

This creates an IAM role called Sophos-Optix-role in your AWS account and connects your AWS account to Sophos Cloud Optix.

Adding EKS clusters

After adding your AWS account to Sophos Cloud Optix, you can add Amazon Elastic Kubernetes Service (EKS) clusters.

You must add these clusters to Sophos Cloud Optix separately, using the Amazon CLI script provided by Sophos. See Add Amazon EKS clusters.