Bitdefender Security for AWS compatibility and requirements
Bitdefender Security for Amazon Web Services is a security solution designed for cloud infrastructures and integrated with GravityZone Cloud Control Center. An innovative and comprehensive solution, Bitdefender Security for AWS protects Amazon EC2 instances running Windows or Linux operating systems.
This article provides you with comprehensive information on the compatibility and requirements of Bitdefender Security for AWS.
Bitdefender Security for AWS is exclusively compatible and integrates with the Amazon Elastic Compute Cloud (Amazon EC2) web service. To use Bitdefender Security for AWS, you need an account on the GravityZone Cloud Control Center (Security Console) and to install BEST on each instance to be protected. You can obtain an account by registering here.
Control Center Requirements
Control Center can be accessed from the following web browsers:
- Internet Explorer 9+
- Mozilla Firefox 14+
- Google Chrome 15+
- Safari 5+
- Microsoft Edge 20+
- Opera 16+
Internet connection is needed.
Supported Guest Operating Systems
Bitdefender Security for AWS protects instances running one of the following operating systems:
- Windows Server 2016 / Windows Server 2016 Core
- Windows Server 2012 / Windows Server 2012 R2
- Windows Server 2008 / Windows Server 2008 R2
- Windows Server 2003 / Windows Server 2003 R2
- Red Had Enterprise Linux / CentOS 6.0 or higher
- Ubuntu 12.04 LTS or higher
- SUSE Linux Enterprise Server 11 or higher
- OpenSUSE 11 or higher
- Fedora 16 or higher
- Debian 7.0 or higher
- Amazon Linux AMI
- Oracle Linux 6.3 or higher
For subscribing to Bitdefender Security for AWS as a direct customer, you must first have an active AWS account. As a best practice, it is strongly recommended that you create and use IAM user accounts associated to your AWS root account.
Moreover, make sure to use a production account where you will be charged by AWS on a monthly basis for using the Bitdefender service.
For details about subscribing to Bitdefender Security for AWS, refer to this KB article.
The Amazon EC2 integration in GravityZone is now based on cross-account access login. This procedure avoids sharing long-term AWS credentials, such as Access Key ID and Secret Access Key.
The Amazon EC2 integration procedure requires you to provide an ARN (Amazon Resource Name - unique identifier for AWS resources) associated with a role attached to your AWS user account.
It is recommended to set up the Amazon integration using an IAM user account created specifically forthis purpose. The IAM user requires IAMFullAccess permission to be able to create the role required for the AWS integration in GravityZone.
Before starting to configure the AWS integration:
- Make sure you have the appropriate AWS user account credentials at hand.
- Open the AWS Console and GravityZone Control Center in two browser tabs, at the same time. You will need to work on both of them to create the AWS integration successfully.
For details about integrating GravityZone with your Amazon EC2 instances, refer to this KB article.
The following ports are used with Bitdefender Security for AWS:
Communication port between BEST and Control Center.
Communication port between BEST and the scan daemon running on the Security Server hosted in the corresponding AWS region.
80 / 7074 (Relay)
Communication ports used by BEST for updates.