Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

How can I receive custom email notifications when a resource is created in my multiples accounts of AWS Organizations

0

Hi everyone!

I reviewed the aws post about receive custom email notifications when a resource is created in "my AWS account" using aws config. https://aws.amazon.com/es/premiumsupport/knowledge-center/config-email-resource-created/?nc1=h_ls

But my the problem is that I still can't find a way to implement this case, not only for the resources created by a single account but of all the aws organizations accounts. ¿If someone could help me to see how to solve it or some another way to receive notifications of creative resources for all of my aws organizations accounts?

Themen
Management & Unternehmensführung
Tags
AWS ConfigAWS OrganisationenAWS Kontoverwaltung
Sprache
English
Mayra Hernandez
gefragt vor einem Jahr528 Aufrufe
2 Antworten
0

You can still use a similar process to the one in the solution you mentioned, but you will need to setup multi-account, multi-region data aggregation in AWS Config. See more info here -> https://docs.aws.amazon.com/organizations/latest/userguide/services-that-can-integrate-config.html

AWS
AWS-Everett
beantwortet vor einem Jahr
profile picture
EXPERTE
Giovanni Lauria
überprüft vor einem Monat
  • Mayra Hernandez
    vor einem Jahr

    I already enable the trusted access since AWS Organizations for AWS Config, in fact i see the resources of all my accounts in Aggregators -> Resources, but if I try to create an eventbridge event with this JSON: (similar of the solution that mention on the post that i shared that it is in one account) { "source": ["aws.config"], "detail-type": ["Config Configuration Item Change"], "detail": { "messageType": ["ConfigurationItemChangeNotification"], "ConfigurationAggregator": { "ConfigurationAggregatorName": ["aws-controltower-ConfigAggregatorForOrganizations"], "ConfigurationAggregatorArn": ["arn:aws:config:us-east-1:802412677794:config-aggregator/config-aggregator-12v4dgci"] }, "ConfigurationItem": { "configurationItemStatus": ["ResourceDiscovered"], "resourceType": ["AWS::EC2::Instance"] } } } But it doesn't work, so I think EventBridge doesn't support multi-region or multi-account events.

0

Take a look at this Amazon prescriptive guidance pattern -> https://apg-library.amazonaws.com/content/9862df6d-3d3d-482d-b122-04198ed691e2 and this Amazon EventBridge document -> https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-cross-account.html to see if that helps with your notifications with AWS Config aggregators.

AWS
AWS-Everett
beantwortet vor einem Jahr

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt