Documentation Index

Fetch the complete documentation index at: https://help.nucleussec.com/llms.txt

Use this file to discover all available pages before exploring further.

Instance Sync

  • 1 minute(s) read
Prev Next

You can synchronize the available EC2 instances and ECR repositories and images in multiple regions across multiple accounts. This includes:

  • Creating EC2 instances as assets in Nucleus with all of the associated instance metadata.
  • Creating images in repositories for which there are no available scans.
  • Synchronizing AWS resource tags and container image tags for mutable container image repositories.
  • Automatically deactivating or removing EC2 instances and ECR container images in Nucleus if they have been terminated in the corresponding AWS account or ECR repository.
Warning

We strongly recommend that you only sync and ingest data from regions which are expected to have assets and scan data. If you select every region, the connector will take longer to process as discrete API calls need to be made to each region per AWS account.

Set up instance synchronization

Asset Correlation Note

This connector automatically correlates EC2 instances from AWS with assets created from vulnerability scan tools such as Tenable.io, Qualys VM, or Rapid7 Nexpose to ensure that assets are not duplicated.

  1. From the navigation bar on the left, select Automation.
  2. Select the Asset Inventory Sync tab.
  3. Click + Add Rule.
  4. In the Name field, enter a name for the rule.
  5. From the Select the connector from which you would like to import assets menu, select the AWS connector you created previously.
  6. Click Next.
  7. Select Amazon EC2 or Amazon ECR.
  8. Click Next.
  9. Select the region(s) from which to sync assets.
  10. Click Next.
  11. Select the account(s) from which to sync assets.
  12. Click Next.
  13. Select which assets to import.
    • To import all assets, select Apply to all assets.
    • To import specific assets, select Only import assets which match the criteria and configure asset matching rules to define which assets to import.
  14. Click Next.
  15. In the Start Date field, enter or select a date to begin synchronizing assets.
  16. In the Start Time field, select the time of day for assets to synchronize.
  17. Click Save & Finish.

Next steps

After setting up instance synchronization, proceed with configuring the AWS connector to pull data from any of the following AWS services:
- Inspector 2 (EC2 Continuous Scanning) via Security Hub
- ECR (Enhanced Scanning) via Security Hub
- Inspector Classic
- ECR (Basic Scanning)