Question on internal scanning for PCI. Would using just the Qualys agent on a VPC in AWS be sufficient for internal PCI scans? Would you also have to run say, uncredentialed scans? Would this depend on the environment in AWS, i.e. if there are security appliance VPC's or similar systems which may not have the ability to have an agent installed?