Get Started

Getting Started

Deploy

Onboard and Manage Accounts

Amazon Web Services (AWS)

Google Cloud Platform (GCP)

Microsoft Azure

Oracle Cloud Infrastructure (OCI)

Additional Providers

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Integrations

Understand Data

Inventory

Query Filters & Insights

Manage and Act on Data

Bots & Automation

Infrastructure as Code (IaC) Security

Cloud IAM Governance

Vulnerability Management

Workload Security

System Administration

System Settings

Developer Resources

API

Support

Organizations

Hello, new experience!

With the version 25.5.13 release of InsightCloudSec, we've added a new version of the Organizations page that improves the navigation experience and the look-and-feel. The old interface (Legacy UI) is on by default, but you can click the Switch to Modern UI button to test out the new interface.

In InsightCloudSec, organizations allow for multi-tenant functionality to logically isolate resources, users, Bots, and Insights according to their unique uses. This capability, available under Settings > System Administration > ICS Organizations, allows you to manage multiple distinct user bases in a single InsightCloudSec installation.

Cloud accounts and their resources can only belong to one organization and cannot be modified or viewed from another organization. Review our documentation around Badges for more information on configuring and managing InsightCloudSec organization functionality.

Provider Organizations

An InsightCloudSec organization is different from provider-specific organizations. Provider-specific organizations (available under Clouds > Organizations) are used to manage cloud accounts within the respective provider. Details on provider organizations are available here:

Management Hierarchy

The hierarchy of management within InsightCloudSec can be understood as follows:

Organizations (Enterprise Only) - Organizations allow for complete isolation between Cloud accounts, resources, and users on an installation. Cloud Accounts and their resources can only belong to one organization and cannot be modified or viewed from another organization.

Domains > Organizations > Groups/Roles/Users

Review the Users, Groups, and Roles (User Management) documentation to learn more about the InsightCloudSec hierarchy and how users are managed.

Prerequisites

Before getting started you need to ensure you have the following:

A functioning InsightCloudSec installation
Domain Admin privileges

Organization Visibility - User Permissions

Org admins and basic users do not see the organization list and cannot change organizations or modify organization details.

Adding an Organization

Go to Settings > System Administration > ICS Organizations.
Click Create ICS Organization.
Give the new organization a name.
Optionally enter a Source Organization to use as a template. If you select a source organization, the Insights, roles, and user groups will be copied over to the new organization. If left blank, then the organization will be empty.
Click Create.

Managing an Organization

To manage, edit, or delete an existing InsightCloudSec organization, navigate to the Settings > System Administration > ICS Organizations.

Navigate to the target organization and select the Actions menu on the left side of the organization name.

Actions available for existing organizations include the following:

Update Organization -- Update the name of the organization.
Update Badges -- Add or remove system badges for this organization.
Configure Navigation Menu Blocklist -- Configure the navigation menu for this organization.
Configure Email (SMTP) -- Configure the SMTP settings for this organization. Users also have the option to enable SMTP to apply to all organizations in an InsightCloudSec installation. InsightCloudSec currently supports standard email SMTP or Amazon SES SMTP for more information.
Delete Email Configuration -- Delete the SMTP configuration for this organization.
Delete Organization -- Delete this organization (this option is not available for an active organization). Any Insight Packs created under this Organization will also be removed.

Configure standard SMTP

Simple Mail Transfer Protocol (SMTP) enables InsightCloudSec to send email notifications and is compatible with all InsightCloudSec resources. This functionality, once configured, enables users to create notifications for emails in a variety of different scenarios.

For example, a user can use a Bot to generate an email that includes a list of all Instance Owners who have provisioned an instance without corporate-required tags. Alternatively, a user could send an automated email for a particular Compliance Pack to continually monitor progress.

Integrations and Templating

InsightCloudSec includes support for Jinja2 Templating and numerous third-party Integrations. Check out the links for details on configuring these capabilities.

To configure Email SMTP:

Login to InsightCloudSec and navigate to Settings > System Administration > ICS Organizations.
Locate the Actions menu for the organization to wish you wish to send emails and select Configure Email (SMTP).
To configure SMTP, enter the information relevant to your organization:
- Hostname/IP -- Enter the name or IP address of the host used for SMTP transactions.
- Port -- Enter the port used for SMTP transactions.
- Enable SSL (checkbox) -- Select if you want InsightCloudSec to use Secure Sockets Layer (SSL) to encrypt the connection. Using SSL is recommended if you are sending sensitive information.
- Username (optional) -- Enter the username for the account that you will use to connect to the SMTP server.
- Password (optional) -- Enter the password of the account that you will use to connect to the SMTP server.
- Email -- Enter the email address you wish to use as the default for emails sent from InsightCloudSec.
- Domain Allowlist (optional) -- If desired enter an optional list of allowlisted recipient domains. Email recipients not in this list will be discarded.
- Set as Global Configuration (checkbox) - If selected, the configuration for SMTP supplied here will be applied to all other organizations within your domain.
Click Submit to save your settings. You should see Email Configured has a checkmark next to the organization you modified.

After your SMTP configuration settings are verified, you can then begin to use Insight subscriptions, compliance scorecard subscriptions, and Bot actions.

Verify Receipt of Email

Once configured, the emails will be sent even if they have an incorrectly configured destination. We strongly recommend that you verify receipt of email on your end to ensure your configuration is correct; InsightCloudSec does not include a mechanism to verify the receipt of email.

Configure Amazon SES SMTP

InsightCloudSec has the ability to use Amazon Simple Email Service (Amazon SES) as an SMTP server to generate emails. SES setup consists of two parts: one part is completed in the AWS console and the other in InsightCloudSec.

Email Receiving Regional Availability

Amazon SES only supports email receiving in the following regions:

See the Amazon SES documentation for more information.

To configure the AWS console for SES SMTP with InsightCloudSec:

Navigate to SES inside AWS (under Customer Engagement: Simple Email Service), ensure you select a region that allows email.
Click Email Addresses (in the navigation menu under User Management).
Click Verify a New Email Address.
- Fill out the intended email address.
- Click Verify This Email Address.
Go to the mailbox for that email address and open the Amazon Web Services – Email Address Verification Request email; select the verification link.
Verification Timing
It may take up to an hour for the verification email to arrive in your Inbox. Your email will be marked as "pending verification" on AWS' Verified Emails screen until the verification process is complete.
Ensure that your email has been verified. After selecting the verification link, return to the list of Verified Emails on the AWS console, and verify a green check by your email address.
Generate your SMTP credentials:
- Click SMTP Settings (under SES Home on the AWS navigation menu).
- Click Create My SMTP Credentials.
Fill out the intended IAM User Name. You can create your own username or you can accept the default user name. Click Create.
Either record or download the generated credentials. (Download is accessed from the blue button, bottom right of screen.)

To configure InsightCloudSec for SES SMTP:

Login to InsightCloudSec and navigate to Settings > System Administration > ICS Organizations.
Locate the Actions menu for the organization to wish you wish to send emails and select Configure Email (SMTP).
To configure SMTP, enter the information relevant to your organization:
- Hostname/IP -- Enter the name or IP address of the host used for SMTP transactions.
- Port -- Enter the port used for SMTP transactions.
- Enable SSL (checkbox) -- Select if you want InsightCloudSec to use Secure Sockets Layer (SSL) to encrypt the connection. Using SSL is recommended if you are sending sensitive information.
- Username (optional) -- Enter the username for the account that you will use to connect to the SMTP server.
- Password (optional) -- Enter the password of the account that you will use to connect to the SMTP server.
- Email -- Enter the email address you wish to use as the default for emails sent from InsightCloudSec.
- Domain Allowlist (optional) -- If desired enter an optional list of allowlisted recipient domains. Email recipients not in this list will be discarded.
- Set as Global Configuration (checkbox) - If selected, the configuration for SMTP supplied here will be applied to all other organizations within your domain.
Click Submit to save your settings. You should see Email Configured has a checkmark next to the organization you modified.

After your SES SMTP configuration settings are verified, you can then begin to use Insight subscriptions, compliance scorecard subscriptions, and Bot actions.

Did this page help you?