📄️ Windows Agent Overview
The Lacework Windows agent provides threat detection, file and Windows registry integrity monitoring, and host-based intrusion detection for your cloud or on-premises Windows Server OS-based workloads.
📄️ Windows Agent System Requirements
To analyze application, host, and user behavior, Lacework uses a lightweight Windows agent, which securely forwards collected metadata to the Lacework platform for analysis.
📄️ Configure Access to AWS
For the Lacework Windows agent to be able to retrieve externally-created tags, the AWS EC2 instance must have permission to DescribeTags. Note that doing this enables discovery of any external cloud tags, not just the custom agent tags for Lacework.
📄️ Configure Access to Google Cloud
For the Lacework Windows agent to be able to retrieve user-defined labels on Google Compute Engine (GCE) instances, the service account associated with the instance must have sufficient authorization to retrieve this information over the Compute Engine API. In particular, this instance and its associated service account must possess: