Welcome to the new Evident.io Support Portal. Our goal was to make it easier to navigate, so please let us know if you have any questions or concerns. We have migrated the ticket content from the old portal, but you may need to re-register to log in and view your tickets.
AWS API rate limit exceeded, causing rate-limit exceptions to be thrown by both ESP and other tools using AWS API.
"message" => "The signature is being rate-limited by AWS. Please stagger API usage so the signature is not running concurrently with other processes on the same service or request an API rate limit increase from AWS for the impacted service."
ESP can potentially generate a large number of AWS API calls during a scan cycle. If AWS's rate limit is reached, these API requests may result in rate-limit exceeded exceptions for both ESP and other tools.
READ FIRST: Evident.io is aware that ESP generates a large number of AWS API calls, and it is a problem that's being taken very seriously. Engineering is working towards a long-term solution, but in the meantime, please consider the recommendations below to alleviate this issue:
It is recommended to first identify the AWS service(s) that is exceeding the rate limit, and then perform tuning to target those services. For example, if the EC2 rate limit is being reached, disabling signature the AWS:EC2-001 is a good first step towards reducing API calls for that service.