@shinyaz

Security Agent Application is a regional resource, not global

1 min read
#aws#security-agent#iam

Tried to reference a Tokyo-created Application ID when running a pentest in us-east-1:

Output
ResourceNotFoundException: Application not found: app-f62503eb-...

list-applications in us-east-1 returned empty. The Tokyo Application is invisible from other regions.

Terminal
# Need to create a new one in us-east-1
aws securityagent create-application --region us-east-1

When I first ran create-application in Tokyo and got "Only one application per account is allowed", I assumed Application was a global, account-wide resource. It's actually one per region — same scope as Agent Space, Target Domain, and Pentest.

Share this post

Shinya Tahara

Shinya Tahara

Solutions Architect @ AWS

I'm a Solutions Architect at AWS, providing technical guidance primarily to financial industry customers. I share learnings about cloud architecture and AI/ML on this site.The views and opinions expressed on this site are my own and do not represent the official positions of my employer.

Read more