CNVM FAQ Updates 8.9 (#3579) (#3614)

* FAQ Updates 8.9 * Update docs/cloud-native-security/vuln-management-faq.asciidoc (cherry picked from commit d19f8d7) Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
elastic · Jul 25, 2023 · 3a30177 · 3a30177
1 parent 1dc8415
commit 3a30177
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/docs/cloud-native-security/vuln-management-faq.asciidoc b/docs/cloud-native-security/vuln-management-faq.asciidoc
@@ -33,7 +33,7 @@ Yes, CNVM scans all AWS EC2 instances in every scan cycle, including any created
 
 *Does CNVM scan AWS EC2 instances with encrypted volumes?*
 
-CNVM does not currently support scanning of encrypted volumes. This limitation will be addressed in future releases.
+Encrypted volumes can be scanned only if they were encrypted using Amazon's default EBS key.
 
 *Does CNVM prevent multiple installations in a single region?*
 
@@ -50,3 +50,7 @@ Yes, CNVM scans all EC2 instances, whether they are running or stopped, to ensur
 *What AWS permissions does the user require to run the CloudFormation template for CNVM onboarding?*
 
 To run the CloudFormation template for CNVM onboarding, you need an AWS user account with permissions to perform the following actions: run CloudFormation templates, create IAM Roles and InstanceProfiles, and create EC2 SecurityGroups and Instances.
+
+*Why do I get an error when I try to run the CloudFormation template?*
+
+It's possible you're using an unsupported region. Currently the `eu-north-1` and `af-south-1` regions are not supported because they don't provide the required instance types.