Datasync agent security Hardening report

Question

We have a Datasync agent agent deployed in a corporate firewalled network. Our security teams wants to do a vulnerability scan on the agent and needs an elevated privilege user for that. The default admin user doesnt seem to work. Is there a way to get an elevated user for the agent or is there such security hardening report readily available for the Datasync agent which we can download from somewhere?
The agent is not deployed on EC2. Its deployed as on-premise device within an on-premise network.

Kidd Ip · Answer

Please consider the following:

1. Elevated Privilege User
The default admin user for the DataSync agent might not have the necessary permissions for certain operations, such as vulnerability scans. To my understanding, AWS does not provide a direct way to create an elevated privilege user beyond the default admin credentials, so please ensure that the IAM role associated with the agent has sufficient permissions for the required operations.

2. Security Hardening Report
AWS does not provide a downloadable security hardening report specifically for the DataSync agent. However, you can refer to the following resources for security and compliance information:
•	AWS DataSync Security Documentation: This provides details on how AWS secures the DataSync service and its components.
•	Compliance Validation: AWS services, including DataSync, are regularly audited for compliance with various standards.

3. Conducting Vulnerability Scans
If your security team needs to perform a vulnerability scan:
•	Ensure that the agent is configured to allow such scans within your corporate firewall.
•	Use tools that are compatible with the agent's operating environment. For example, ensure that the scanning tool supports the protocols and configurations used by the DataSync agent.

https://docs.aws.amazon.com/datasync/latest/userguide/security.html

Datasync agent security Hardening report

Relevant content