Managing multiple accounts in Amazon Inspector with AWS Organizations - Amazon Inspector

Managing multiple accounts in Amazon Inspector with AWS Organizations

You can use Amazon Inspector to manage multiple accounts associated with AWS Organizations. To manage multiple Amazon Inspector accounts, the Organizations management account designates an account as the delegated administrator account for Amazon Inspector. The delegated administrator account manages Amazon Inspector for an organization and is granted special permissions to perform tasks on behalf of the organization. These tasks include activating or deactivating scans for member accounts, creating and managing suppression rules, and viewing aggregated finding for the entire organization.

Note

To enable Amazon Inspector programatically for multiple accounts in multiple AWS Regions, you can use a shell script that Amazon Inspector developed. For more information, see inspector2-enablement-with-cli on the GitHub website.