Deploying File Security Storage to an existing AWS account

Procedure

1. Go to Service Management → Cloud Accounts.
2. Click the AWS tab.
3. Click the name of your existing AWS account in the list.
   The Cloud Account Settings drawer opens.
4. Click the Stack Update tab.
5. In the Select Features list, scroll down and enable File Security Storage.
6. Open the File Security Storage drop-down.
7. From the Deployment list, select at least one region.
   This is the region where you deploy the File Security Scanner.
8. Click Copy S3 URL.
9. In a new browser tab, log in to your AWS account.
10. In AWS CloudFormation, use the stack name to locate the stack:
    Stack Name: Trend-Vision-One-Cloud-Account-Management
11. Click Update.
12. Select Replace current template and paste the copied S3 URL.
13. Scroll down to the File Storage Security section, and provide the following parameters:
    1. In the FileSecurityStorageKMSKeyARNsForBucketSSE field, provide a comma-separated list of ARNs for the KMS master keys used to encrypt S3 bucket objects. Leave this field blank if you have not enabled SSE-KMS for the S3 buckets.
    2. In the FileSecurityStorageObjectCreatedEventFilter field, provide a JSON string of the event pattern to filter the object-created event.
    3. In the FileSecurityStorageScannerEphemeralStorage field, provide the size, in MBs, of the scanner Lambda function's temp directory.
    4. In the FileSecurityStorageQuarantineBucket field, enter the bucket in which you want to quarantine malicious files. Leave this field blank to disable quarantining.
    5. In the FileSecurityStorageScanResultTagFormat field, enter the format of the scan results tagged on the scanned object.
14. Scroll to the bottom of the Quick create stack screen, select the acknowledgement options, and click Create stack.
15. In the Trend Vision One console, click Save Change.