Skip to main content

Netskope Help

Enabling Forensics for Amazon Web Services S3

To configure your AWS S3 buckets as a forensic destination,

  1. Make a list of AWS accounts you want to configure for Forensic. The list must include account numbers and account names. Optionally, you can also include email addresses associated with the account.


    Netskope recommends using the same account name as the AWS account alias. If an account alias is not available for the AWS account, then provide an account name for the AWS account.

    You can use AWS CLI to generate the list of AWS accounts as a CSV file. To learn more, see "Creating a CSV file" in Step 1/2: Configure AWS Accounts & Services for Forensic.

  2. In the Netskope UI go to Settings > API-enabled Protection > IaaS. Click Setup.

  3. Follow the instructions in the following sections.


If you have existing AWS accounts that were configured using the old set up process, you can migrate them using the instructions in Migrating existing AWS accounts to the new set up.

Migrating to the new setup will enable you to automatically add new AWS accounts into Netskope.