Uptycs and AWS: Better Together
Install, scale, manage, find workloads without protection, and roll it out!
AWS customers demand a smarter, more efficient, and customizable approach to securing their AWS environment. With Uptycs' deep integration with AWS Systems Manager, organizations can achieve comprehensive security and control while reducing operational overhead. Let’s explore the key benefits of integrating Uptycs with AWS Systems Manager for automated, seamless deployment, enhanced visibility, and effortless management of Uptycs sensors across cloud workloads.
Understanding AWS Systems Manager
AWS Systems Manager is a suite of tools designed to simplify the management of AWS resources. It offers a unified interface for managing instances, operating systems, applications, and other AWS resources, like AWS Fargate, AWS Lambda, and Kubernetes worker nodes. Systems Manager provides a centralized approach to handle tasks like patch management, software inventory, and system configurations across hybrid cloud environments.
Introducing Uptycs CNAPP and XDR Security Platform
AWS customers require an integrated cloud security solution with expansive capabilities to address the evolving threat landscape. Enter Uptycs, the first unified cloud native application protection (CNAPP) and endpoint security platform, providing a comprehensive and robust security foundation for your AWS infrastructure. Uptycs offers visibility, control, and protection for your cloud workloads, whether they reside on-premises or in the AWS cloud.
By integrating Uptycs with AWS Systems Manager, customers can leverage the combined capabilities of both platforms to strengthen their cloud workload security. This integration automates the process of deploying the Uptycs sensor across multiple instances, ensuring consistent installation and reducing potential security vulnerabilities.
The integration ensures that AWS Systems Manager checks all workloads to see if they match the defined state (i.e., having the Uptycs sensor installed). If a workload doesn't match this state, the Uptycs sensor will be installed. This process provides preventative security and ensures that all workloads are always covered by the Uptycs sensor, enhancing your security posture.
- Automated Deployment: The integration automates the installation and management of Uptycs sensors across a customer's cloud workloads, including instances, nodes, and other resources, saving time and reducing the potential for human error. This streamlined process ensures that the Uptycs agent is consistently deployed, eliminating the need for manual installation and configuration.
- Full Coverage: The integration ensures that all workloads have the Uptycs agent installed, ensuring full coverage and thereby reducing potential security vulnerabilities. Customers can gain comprehensive visibility into their infrastructure and detect suspicious activities or potential threats.
- Customizability: Users can customize the Distributor Package and State Manager Association to suit their specific needs, offering adaptability to various infrastructure and security requirements. This customization allows customers to tailor the Uptycs deployment to align with their unique environment and security policies, ensuring maximum effectiveness and compliance.
How it Works
The Python script creates an S3 bucket, installs the necessary software for the Uptycs sensor, and then leverages Systems Manager to create a distributor package. The distributor package contains the automation software leveraged by Systems Manager. The native AWS functions within Systems Manager ensure Uptycs sensors are loaded based on the defined criteria.
- Uptycs Platform: A cloud-native, sensor-based security solution that provides continuous monitoring, detection, and response capabilities for modern cloud workloads.
- AWS Systems Manager's State Manager: Automates the process of keeping instances in a desired state.
- Systems Manager documents: Define the desired state of the infrastructure.
- Distributor Packages: Used to distribute software and updates to multiple computers or instances.
- Uptycs Platform subscription and admin access
- AWS CLI with console permissions
- EC2, IAM, S3, State Manager permissions
- Python version 3.6 or higher
- An AWS account with at least one region enabled for host management
Solution Implementation and Support:
The Uptycs onboarding process assists customers with the Uptycs+System Manager sensor installation. Support includes automation scripts, detailed diagrams, deployment guides, and templates. Distributor packages and state manager associations can be customized from the supplied .zip and manifest.json files.
Users can verify the successful creation of the package in the AWS Console.
Deploying the Uptycs sensor in environments can be simplified by integrating AWS Systems Manager. Implementing new security solutions can present challenges in brownfield scenarios where systems and infrastructure are already established. However, with AWS Systems Manager, you can use its sensor management capabilities to remotely install and manage the Uptycs sensor across your fleet of cloud workloads.
The integration offers multiple deployment patterns to accommodate various scenarios. Whether it's a single account set up, organization-wide deployment, integration with ControlTower or landing zones, or seamless integration within a development pipeline, AWS Systems Manager provides the flexibility to cater to different deployment needs.
In addition, the solution leverages metadata to provide granular control over the deployment of Uptycs sensors. Customers can precisely target specific entities or deploy the sensors across their entire cloud environment using tagging methods. This level of control is achieved without additional coding, ensuring a streamlined and efficient deployment process.
How to Integrate SSM with Uptycs
Integrating Uptycs with AWS Systems Manager (SSM) for seamless deployment of Uptycs sensors across EC2 cloud workloads is a straightforward process that brings numerous benefits to organizations.
Here's a simplified step-by-step guide:
- Clone the Uptycs AWS Systems Manager integration repository to create a local copy of the solution.
- Create your Uptycs API credential file by downloading it from the Uptycs console. The script requires this file to download relevant files from the Uptycs API and place them in the correct folder.
- Execute the ‘stage-package.py’ script in the ‘ssm-distributor’ folder to create the distributor package. This script will build zip files and a manifest.json file, place them in a local folder, and upload them to an S3 bucket in your AWS account.
- Verify the contents of the S3 bucket in your AWS Console to ensure that the distributor package and files have been successfully uploaded.
- Choose to set up the Distributor Package and State Manager Association using either Terraform or CloudFormation, based on your preference. Both options are provided in the repository.
- Terraform Option: Move to the ‘terraform’ folder, modify the ‘variables.tf’ and setup.tfvars files to set the required variables, initialize Terraform using the ‘terraform init’ command, create a plan using ‘terraform plan’, and apply the resources using ‘terraform apply -var-file=setup.tfvars --auto-approve’.
- CloudFormation Option: Refer to the CloudFormation document provided in the repository for instructions.
Once the setup is complete, verify the successful creation of the distributor package and State Manager Association in your AWS Console under Systems Manager.
By following these steps, organizations can seamlessly integrate Uptycs with AWS Systems Manager for automated deployment of Uptycs sensors across EC2 cloud workloads.
Integrating AWS Systems Manager with Uptycs is a significant step towards securing your cloud workloads and safeguarding your digital assets. This integration ensures consistent installation, reduces potential security vulnerabilities, and enhances the security posture of the AWS infrastructure.
With Uptycs and AWS Systems Manager working together, organizations can achieve unified management, comprehensive visibility, automated patch management, and proactive threat detection and response, empowering them to secure their cloud environment effectively.