Note: Cloud sync is only available for customers on our Cloud, Pro, Enterprise, and Vanguard plans.
What is Cloud sync?
In short, Cloud sync, allows you to customise the management and scanning of your cloud assets, with varying degrees of automation.
For a detailed overview of how to enable Cloud sync and all the various features, head to this article.
Getting it set-up
You can enable it in two ways.
When you first add the cloud account: simply select '
Automatically sync new targets':
2. Once the cloud account has already been added: head to Targets page > Select the cloud account > Settings > toggle Automatically sync new targets to on :
Manage what gets imported
Automatically sync new targets
Automatically adds cloud targets to the Intruder portal when instances are spun up and remove them when targets are decommissioned in your cloud account. The licence will only be assigned when the target is scanned.
Please be aware, Auto-add target will not add any targets previously excluded from scanning. You'll need to add those manually.
Add targets based on a rule
Only assets that adhere to that rule will be added to the Intruder platform; this applies to present targets as well as any future ones that we find.
You can add as many rules as you like.
NB: when adding more than one Selective sync rule these are logical AND rules, e.g. setting rules for a specific tag and a specific region, will mean only targets that match both the tag and the region will be added.
⚠️ It's worth noting that enabling a rule will remove any previously imported cloud targets that don't adhere to it.
Head to Targets > Discovery > click on the relevant cloud account > click
Settings(top right) > Selective sync, click+ Add rule
Use the dropdown to select one of the options:
Use the next dropdown to make your choice, and then click the 'Add rule' button:
As soon as it's been added you'll see the rule appear and your targets will update. Clicking the trash can emoji will delete it.
Remove imported targets
Maybe you accidentally imported the wrong thing; want to exclude one or two from a valid rule, or simply don't want your licenses being assigned yet, we've got you covered. Just select from the list and hit the Exclude button:
Manage what gets scanned
Auto-scan targets
Any cloud assets matching your import rules will be scanned as soon as they're detected + added to the platform.
Head to your Targets > Discovery > Click account > Settings > Automatically scan new targets
If you don't enable Auto-scan targets, your asset(s) will be scanned as soon as an 'all target' scan runs, or you kick off a manual scan with it included
Where can I see these scans?
Any scans kicked off automatically by Cloud sync will be shown on the Scans page, just filter by
Cloud sync scanas shown below:
Disable Cloud sync
Head to Targets page > Discovery > click cloud account > Settings > toggle Automatically sync new targets to off > confirm the change by pressing Turn off on the modal that appears:
All targets already imported will remain, but any new ones that appear in your cloud account will need to be added manually.
Once Cloud sync has been disabled, you can easily add targets manually. Just click the green + button:
Tracking Cloud sync activity
You can find updates on Cloud sync activity in your Activity Feed on the dashboard.
This will show you any changes that may have occurred and the date and time of these changes including when a target is deleted, created or restored:
You can also see this same activity on the target's detail page:
