Directly contact our Support Team

Security-as-a-Service for AWS compatibility and requirements

Security-as-a-Service for Amazon Web Services by Bitdefender is a security solution designed for cloud infrastructures and integrated with GZ Cloud Console. An innovative and comprehensive solution, Security-as-a-Service for AWS protects Amazon EC2 instances running Windows or Linux operating systems.

This article provides you with comprehensive information on the compatibility and requirements of Security-as-a-Service for AWS.


Security-as-a-Service for AWS is exclusively compatible and integrates with the Amazon Elastic Compute Cloud (Amazon EC2) web service. To use Security-as-a-Service for AWS, you need an account on the GravityZone Cloud Console (Security Console) and to install BEST on each instance to be protected. You can obtain an account by registering here.

Security Console Requirements

Security Console can be accessed from the following web browsers:

  • Internet Explorer 8+
  • Mozilla Firefox 8+
  • Google Chrome 15+
  • Safari 4+
  • Opera

Internet connection is needed.

Supported Guest Operating Systems

Security-as-a-Service for AWS protects instances running one of the following operating systems:

  • Windows Server 2012 / Windows Server 2012 R2 
  • Windows Server 2008 / Windows Server 2008 R2
  • Windows Server 2003 / Windows Server 2003 R2
  • Red Had Enterprise Linux / CentOS 5.6 or higher
  • Ubuntu 10.04 LTS or higher
  • SUSE Linux Enterprise Server 11 or higher
  • OpenSUSE 11 or higher
  • Fedora 15 or higher
  • Debian 5.0 or higher

Amazon Credentials

The following Amazon credentials are required in order to subscribe to and set up Security-as-a-Service for AWS:

  • Your Amazon sign in credentials (email address and password). When subscribing, you are required to sign in to Amazon Payments and authorize payments to Bitdefender for your Security-as-a-Service for AWS subscription.
  • Access key ID and secret access key of your Amazon account or of an AWS Identity and Access Management (IAM) user. The access key enables Security-as-a-Service for AWS to synchronize with your AWS account and provide real-time visibility into your Amazon EC2 infrastructure.

Note: To learn how to create an AWS Identity and Access Management (IAM) user with the minimum required privileges for use with Security-as-a-Service for AWS, refer to this KB article.

  • The private keys of your Amazon EC2 key pairs. You need access to your instances to install Silent Agent.

Free Ports

The following ports are used with Security-as-a-Service for AWS:



SSH (22)

Port used to access instances running on Linux.

RDP (3389)

Port used to access instances running on Windows.


Communication port between BEST and Security Console.

7081 / 7083 (SSL)

Communication port between BEST and the scan daemon running on the Security Server hosted in the corresponding AWS region.

80 / 7074 (Relay)

Communication ports used by BEST for updates.

Amazon EC2 security groups must allow inbound access to SSH and RDP during the BEST installation on instances. If you run firewall software on your instances, make sure to configure it to allow access to all of the previously specified ports.

Can't find a solution for your problem? Open an email ticket and we will answer the question or concern in the shortest time possible.

Rate this article: