AWS Quick-start

Find out about using AWS Quick-start to add environments to Sophos Cloud Optix

Using a simple CloudFormation template, Quick-start creates a read-only IAM role in your AWS account. Sophos Cloud Optix uses this role to access information via APIs to monitor security.

Quick-start gets you up and running with core features, including inventory and security configuration benchmark scanning. The following advanced features are not supported by the Quick-start setup option:

  • Network traffic information flow displayed on Network Visualization.
  • Searching for outbound network traffic information.
  • Outbound network traffic anomaly detection and alerts.
  • Activity Logs, including Activity Log visualizations and identification of high risk activities.
  • User login anomaly detection and alerts.

To use these features, use one of the full setup options.

If you use Quick-start you can use a full setup option later without removing the environment you already created.

To use Quick-start, do as follows:

  1. Sign in to your AWS console with the account you want to add to Sophos Cloud Optix
  2. Sign in to Sophos Cloud Optix.
  3. In Sophos Cloud Optix, under Settings click Add Environments.
  4. Click AWS > Quick-start Setup.
  5. Follow the instructions on the screen to add your AWS account to Sophos Cloud Optix.

This creates an IAM role called Sophos-Optix-role in your AWS account and connects your AWS account to Sophos Cloud Optix.

Note After adding your AWS account to Cloud Optix, you can add Amazon Elastic Kubernetes Service (EKS) clusters. You must add these clusters to Sophos Cloud Optix separately, using the Amazon CLI script provided by Sophos. See Add your Amazon EKS clusters.