Managing multiple accounts in Amazon Inspector with Organizations
You can use Amazon Inspector to manage multiple accounts that are associated through AWS Organizations. To manage multiple Amazon Inspector accounts, the Organizations management account designates an account within the organization as the delegated administrator account for Amazon Inspector. The delegated administrator manages Amazon Inspector for the organization and is granted special permissions to perform tasks on behalf of your organization. These tasks include activating or deactivating scans for member accounts, viewing aggregated finding data from the entire organization, and creating and managing suppression rules.
Note
To programmatically enable Amazon Inspector for multiple accounts in multiple AWS Regions, you
can use a shell script developed by Amazon Inspector. For more information about using this script,
see inspector2-enablement-with-cli