View which TrendAI Vision One™ features are supported for each cloud provider and the deployment methods used to connect cloud accounts.
Feature support by cloud provider
The following table shows which TrendAI Vision One™ features are available for each cloud provider and account scope, and the deployment
method used to configure and deploy the necessary resources when connecting the account.
Cloud Account features
|
AWS
|
Azure
|
Google Cloud
|
Alibaba Cloud
|
Oracle Cloud Infrastructure
|
||||
|
Single account
|
Organization
|
Single subscription
|
Management group
|
Single project
|
Organization
|
|||
|
Core Features
|
CloudFormation, Terraform
|
CloudFormation
|
Terraform, Terraform Provider
|
Terraform, Terraform Provider
|
Terraform, Terraform Provider
|
Terraform
|
Terraform
|
Terraform
|
|
Cyber Risk Exposure Management
|
✓
|
✓
|
✓
|
✓
|
✓
|
✓
|
✓
|
✓
|
|
Server & Workload Protection
|
CloudFormation
|
—
|
Terraform
|
—
|
—
|
—
|
Terraform
|
—
|
|
Agentless Vulnerability & Threat Detection
|
CloudFormation
|
CloudFormation
|
Terraform
|
—
|
Terraform
|
—
|
Terraform
|
Terraform
|
|
Real-Time Posture Monitoring
|
CloudFormation
|
CloudFormation
|
Terraform
|
—
|
Terraform
|
—
|
—
|
—
|
|
Data Security Posture
|
CloudFormation
|
—
|
Terraform
|
—
|
Terraform
|
—
|
—
|
—
|
|
Container Protection for Amazon ECS
|
CloudFormation
|
CloudFormation
|
—
|
—
|
—
|
—
|
—
|
—
|
|
File Security Storage
|
CloudFormation
|
CloudFormation
|
Terraform
|
—
|
Terraform
|
—
|
—
|
—
|
|
AI Application Security
|
CloudFormation
|
—
|
—
|
—
|
—
|
—
|
—
|
—
|
|
Cloud Response
|
CloudFormation
|
CloudFormation
|
—
|
—
|
—
|
—
|
—
|
—
|
|
Cloud Detections for Cloud Audit Logs
|
CloudFormation
|
CloudFormation
|
Terraform
|
—
|
—
|
—
|
—
|
—
|
|
Cloud Detections for Network Flow Logs
|
CloudFormation
|
CloudFormation
|
Terraform
|
—
|
—
|
—
|
—
|
—
|
|
Cloud Detections for Amazon Security Lake
|
CloudFormation
|
—
|
—
|
—
|
—
|
—
|
—
|
—
|
|
Microsoft Defender for Endpoint Log Collection
|
—
|
—
|
Terraform
|
—
|
—
|
—
|
—
|
—
|
Feature descriptions
-
Core Features: Discover your cloud assets and rapidly identify risks such as compliance and security best practice violations on your cloud infrastructure.
-
Cyber Risk Exposure Management: Discover and assess your cloud assets for attack exposure, risk factors, and security posture. This feature requires credits, which are calculated based on asset count after onboarding the cloud account.
-
Server & Workload Protection: Deploy and manage security agents on cloud workloads for comprehensive protection.
-
Agentless Vulnerability & Threat Detection: Scan virtual machines, disks, and container images for vulnerabilities and malware without installing agents.
-
Real-Time Posture Monitoring: Continuously monitor cloud resources for security misconfigurations and compliance violations in real time.
-
Data Security Posture: Identify, assess, and mitigate data risks across cloud and on-premises environments.
-
Container Protection for Amazon ECS: Protect containerized applications running on Amazon Elastic Container Service.
-
File Security Storage: Scan files stored in cloud storage services for malware and security threats.
-
AI Application Security: Protect AI applications from security threats and vulnerabilities.
-
Cloud Response: Automate response actions to security threats detected in your cloud environment.
-
Cloud Detections for Cloud Audit Logs: Analyze cloud audit logs to detect suspicious activities and security threats. Supports AWS CloudTrail and Azure Activity Logs.
-
Cloud Detections for Network Flow Logs: Monitor network traffic in cloud virtual networks to identify suspicious connections and threats. Supports AWS VPC Flow Logs and Azure VNet Flow Logs.
-
Cloud Detections for Amazon Security Lake: Analyze security data from Amazon Security Lake to detect threats across AWS services.
-
Microsoft Defender for Endpoint Log Collection: Collect and analyze Microsoft Defender for Endpoint logs for threat detection and response.
For detailed information about each feature and its requirements, see the features
and permissions topic for your cloud provider:
Deployment methods
TrendAI Vision One™ supports the following deployment methods for connecting cloud accounts:
-
CloudFormation: AWS-native infrastructure as code service that automates resource deployment using templates. Available for AWS accounts only.
-
Terraform: Open-source infrastructure as code tool that supports multiple cloud providers. Provides flexibility and version control for your deployment configuration. Terraform deployments can be run using CloudShell or LocalShell.
-
Terraform Provider: A Terraform plugin that integrates directly with TrendAI Vision One™ APIs, enabling more granular control over resource provisioning and management.
-
CloudShell: Browser-based shell environment provided by the cloud provider. Allows you to run Terraform deployment scripts directly from your cloud provider's console without local setup.
Note
Cloud Shell may have limitations that can cause errors during deployment:-
When deploying across multiple Azure regions, you may encounter errors due to Cloud Shell limitations. If this occurs, use LocalShell instead.
-
-
LocalShell: Command-line deployment from your local machine. Requires installing the cloud provider's CLI tools and configuring credentials locally.
-
Manual: Step-by-step configuration through the cloud provider's console and TrendAI Vision One™. Provides full control over each configuration step.