Aqua CSPM scans are designed to be run quickly with the little-to-no initial configuration. However, to support advanced use cases, several advanced scan options are exposed.


TABLE OF CONTENTS


AWS API Pagination

By default, CSPM scans will use AWS's API pagination parameters to ensure that all AWS resources are queried. In large accounts, this can add to the execution time of scans. Aqua does not recommend disabling pagination, but to debug scans that are timing out or producing unknown scan results, it can be disabled.

  1. Log into the Aqua console and navigate to the Cloud Accounts page.
  2. Locate the AWS account you wish to modify and click the drop-down menu to the right.
  3. Select Edit Account.
  4. In the popup box, toggle the AWS Pagination option
  5. Click Save.


Warning: Disabling AWS pagination may lead to incomplete scan reports with missing data. Only disable this option for debugging.


Marking Unknown Results as New Risks

CSPM evaluates findings as a "new risk" if they have moved from a passing or unknown state to a warning or failing state between two consecutive scan reports. If you prefer not to receive "new risk" notifications when results move from an "unknown" state to "failing" or "warning," you can disable this behavior.

  1. Log into the Aqua console and navigate to the Cloud Accounts page.
  2. Locate the cloud account you wish to modify and click the drop-down menu to the right.
  3. Select Edit Account.
  4. In the popup box, toggle the Unknown Results as New Risks option
  5. Click Save.