Note: Cloud sync is only available for customers on our Cloud, Pro, Enterprise, and Vanguard plans.
What is Cloud sync?
In short, Cloud sync allows you to customise the management and scanning of your cloud assets, with varying degrees of automation.
Getting it set up
You can enable it in two ways.
When you first add the cloud account, simply select '
Add Cloud assets as targets':
Then, click 'Sync all assets':
2. Once the cloud account has already been added, head to the Targets page > click Discovery > your cloud account > Settings (top right) > Sync all assets:
Manage what gets imported
Sync all assets
Automatically adds all scannable cloud targets to the Intruder portal when instances are spun up, and removes them when targets are decommissioned in your cloud account. A licence will only be assigned when the target is scanned.
Please be aware, 'Sync all assets' will not add any targets previously excluded from scanning. You'll need to add those manually.
Manually sync assets
Allows you to select the cloud assets that are added to Intruder as targets by clicking the '+' button:
Selective sync
Only assets that adhere to the specified rule will be added to the Intruder platform. This applies to present targets as well as any future ones that we find.
You can add as many rules as you like.
NB: when adding more than one Selective sync rule, these are logical AND rules, e.g. setting rules for a specific tag and a specific region, will mean only targets that match both the tag and the region will be added.
⚠️ It's worth noting that enabling a rule will remove any previously imported cloud targets that don't adhere to it.
Head to Targets > click Discovery > your cloud account >
Settings(top right) >Selective sync>+ Add rule
Use the dropdown to select one of the options:
Use the next dropdown to make your choice, and then click the '
Add rule' button:
As soon as it's been added, you'll see the rule appear and your targets will update. Clicking the trash can emoji will delete it:
Remove imported targets
Maybe you accidentally imported the wrong thing, want to exclude one or two from a valid rule, or simply don't want your licenses being assigned yet, we've got you covered. Just select from the list and hit the '- Exclude' button or click the three dots to the far right of the target and click 'Exclude':
Manage what gets scanned
Scan on sync
Any cloud assets matching your import rules will be scanned as soon as they're detected and added to the platform.
Head to your Targets > Discovery > your cloud account > Settings (top right) > Scan on sync:
If you don't enable 'Scan on sync', your asset(s) will only be scanned when an 'all target' scan runs, or you kick off a manual scan with it included
Where can I see these scans?
Any scans kicked off automatically by Cloud sync will be shown on the Scans page, just filter by
Cloud sync scanas shown below:
Disable Cloud sync
Head to your Targets page > Discovery > click your cloud account > Settings > Manually sync assets > confirm the change by pressing Turn off on the modal that appears:
All targets already imported will remain, but any new ones that appear in your cloud account will need to be added manually.
Once Cloud sync has been disabled, you can easily add targets manually. Just click the blue '+' button:
Tracking Cloud sync activity
You can find updates on Cloud sync activity in your Activity Feed on the dashboard.
This will show you any changes that may have occurred and the date and time of these changes, including when a target is deleted, created, or restored:
You can also see this same activity on the target's detail page:
