Managing multiple accounts in Amazon Inspector with Organizations

You can use Amazon Inspector to manage multiple accounts that are associated through AWS Organizations. To manage multiple Amazon Inspector accounts, the Organizations management account designates an account within the organization as the delegated administrator account for Amazon Inspector. The delegated administrator manages Amazon Inspector for the organization and is granted special permissions to perform tasks on behalf of your organization. These tasks include activating or deactivating scans for member accounts, viewing aggregated finding data from the entire organization, and creating and managing suppression rules.

Note

To programmatically enable Amazon Inspector for multiple accounts in multiple AWS Regions, you can use a shell script developed by Amazon Inspector. For more information about using this script, see inspector2-enablement-with-cli on the GitHub website.

Topics

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Assessing coverage

Understanding the relationship between administrator and member accounts