home

Security Service Edge

Mobile Endpoint SecuritySecurity Service Edge
Mobile Endpoint SecuritySecurity Service Edge

Lookout Product Documentation

Find answers about using and optimizing Lookout products.

Show Contents

Security Service Edge

Manual Onboarding

Step 5 - Create IAM Monitor Policy

  1. Click Services and select IAM (Identity Access Management).
  2. Select Policies and click Create Policy.
  3. Click the JSON tab.

  4. Copy and paste the policy information.
    {
"Statement": [
{
"Sid": "VisualEditor0", "Effect": "Allow", "Action": [
"sqs:ChangeMessageVisibility", "sqs:ReceiveMessage", "sqs:DeleteMessage", "sqs:GetQueueUrl"
],
"Resource": [
"<<Lookout Monitoring Queue ARN>>"
]
},
{
"Sid": "VisualEditor1", "Effect": "Allow", "Action": [
"s3:GetBucketAcl", "s3:GetBucketLocation", "s3:GetObject", "s3:ListAllMyBuckets", "s3:ListBucket", "s3:PutBucketAcl"
],
"Resource": [
"<< List of s3 bucket arns to monitor or arn:aws:s3:::* >> "
]
},
{
"Sid": "VisualEditor3", "Effect": "Allow", "Action": [
"iam:ListGroupsForUser", "iam:ListUsers",
"iam:ListGroups", "iam:GetUser", "iam:GetGroup"
],
"Resource": "*"

    }

    ]

    "Version": "2012-10-17"
}
  5. Click Review Policy at the lower right portion of the screen.
  6. Give the policy the name lookout-aws-monitor and click Create Policy.

Last updated: November 20, 2024

lookout-footer

Legal Privacy Policy Cookie Policy Transparency Report Compliance Info Compliance Info (Gov)

© 2024 Lookout, Inc. LOOKOUT®, the Lookout Shield Design®, LOOKOUT with Shield Design® and the Lookout multi-color/multi-shaded Wingspan Design® are registered trademarks of Lookout, Inc. in the United States and other countries. DAY OF SHECURITY®, LOOKOUT MOBILE SECURITY®, and POWERED BY LOOKOUT® are registered trademarks of Lookout, Inc. in the United States. Lookout, Inc. maintains common law trademark rights in EVERYTHING IS OK, PROTECTED BY LOOKOUT, CIPHERCLOUD, and the 4 Bar Shield Design.