# External Accounts

The External Accounts page shows all AWS accounts that have accessed your cloud resources, distinguishing between your own linked accounts and external or unknown accounts. Use this page to identify and review unexpected cross-account access.

<figure><img src="/files/EbMBCSD52JVJlo8gNgs2" alt=""><figcaption></figcaption></figure>

***

### Summary Cards

| Card                       | What It Shows                                                                       |
| -------------------------- | ----------------------------------------------------------------------------------- |
| Publicly Exposed Resources | Count of resources accessible by anyone on the internet (links to Public Resources) |
| New External Accounts      | Count of external accounts that have not yet been reviewed                          |
| Trusted Vendors            | Count of accounts that have been approved/whitelisted                               |

<figure><img src="/files/a6pe6Kwj3JyP6C8caKaR" alt=""><figcaption></figcaption></figure>

***

### Status Tabs

Accounts are organized into three tabs:

| Tab              | Meaning                                                                        |
| ---------------- | ------------------------------------------------------------------------------ |
| **Needs Review** | External accounts that have accessed your resources but have not been assessed |
| **Approved**     | Accounts confirmed as trusted vendors or expected cross-account access         |
| **In Violation** | Accounts flagged as unauthorized or suspicious                                 |

<figure><img src="/files/UxRKdROBbfZsGg41pQhC" alt=""><figcaption></figcaption></figure>

***

### Reviewing External Accounts

#### Approving an Account

If an external account is a known trusted vendor or partner:

1. Select the account(s) using the checkboxes.
2. Click **Approve Selected**.

<figure><img src="/files/Fg4dSMnW6vmJ6MgcdSE8" alt=""><figcaption></figcaption></figure>

#### Flagging a Violation

If an account should not have access:

1. Select the account(s) using the checkboxes.
2. Click **Flag as Violation**.

#### Changing a Previously Set Status

* From the **Approved** tab: use **Move to Needs Review** or **Flag as Violation**
* From the **In Violation** tab: use **Move to Needs Review** or **Approve Selected**

All action buttons are disabled until at least one account is selected.

<figure><img src="/files/hlZ9jqg11u1PIbPJCTdT" alt=""><figcaption></figcaption></figure>

***

### Related Pages

* [Public Resources](/portal-overview/data-security-insights/public-resources.md): Review publicly accessible resources
* [Forensic Analysis](/portal-overview/supporting-information/forensic-analysis.md): Search CloudTrail logs to see what specific actions an account performed


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.datadefender.io/portal-overview/supporting-information/external-accounts.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.