Amazon Inspector uses AWS Identity and Access Management (IAM) service-linked roles. A service-linked role is a unique type of IAM role that is linked directly to Amazon Inspector. Service-linked roles are predefined by Amazon Inspector and include all the permissions that the service requires to call other AWS services on your behalf.
Amazon Inspector uses the service-linked role named AWSServiceRoleForAmazonInspector2 refer- https://docs.aws.amazon.com/inspector/latest/user/using-service-linked-roles.html
I had a similar problem with Inspector v2 not scanning ECR repos after it was first set up shortly after re:Invent. I opened a support case on it and they found that a race condition could occur back then that is fixed now. There was a workaround to get it going for my account. The workaround was to got to ECR and disable continuous scanning, save it, wait a minute, then re-enable continuous scanning and save that. Shortly after that ECR repos were producing findings. You might want to give that a shot.
- Accepted Answerasked 9 months ago
- AWS OFFICIALUpdated 7 months ago
- AWS OFFICIALUpdated a year ago
- How can I filter Enhanced Monitoring CloudWatch logs to generate automated custom metrics for Amazon RDS?AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated 10 months ago
- SUPPORT ENGINEERpublished 3 months ago
- AWS Transfer Family announces AWS CloudFormation support and enhanced monitoring capabilities for AS2EXPERTpublished 9 months ago