Netskope Help

Shadow IT – Identifying unsanctioned AWS accounts using Skope IT

Identification of unsanctioned AWS accounts can be done from Skope IT. Navigate to Skope IT > Application events. In the query box, type in the query “app like “AWS”. Results will be displayed in the UI. Ensure that Instance ID field is shown in the UI by selecting the field from the gearbox in the right corner. The results can also be exported and analyzed offline by selecting the Export button.

vrp_threat_use_case_7.jpg