- 최신
- 최다 투표
- 가장 많은 댓글
Have you enabled and configured AWS config, Inspector and GuardDuty across your regions of choice regions?
Security Hub collects security data from across AWS accounts, services, and supported third-party partner products and helps you analyze your security trends and identify the highest priority security issues.
It does not go and perform checks or analysis of the estate.
Hi. What you should do is enable AWS Config.Furthermore, I will recommend you to disable and re-enable all standards after that to see scores asap.
https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-prereq-config.html
Security Hub recommends that you enable resource recording in AWS Config before you enable Security Hub standards. If Security Hub tries to run security checks when resource recording is not enabled, the checks return errors.
If you enable AWS Config after you enable a standard, Security Hub still creates the AWS Config rules, but only if you enable AWS Config within 31 days after you enable the standard. If you do not enable AWS Config within 31 days, then you must disable and re-enable the standard after you enable AWS Config
If you have trouble when enabling AWS Config, check the following link.
https://repost.aws/knowledge-center/config-error-security-hub
Not yet enabled above mentioned services but also not received any findings on ec2, s3 etc ..Also not getting security score . Though zero score also not showing
Unless you enable the above you will not receive any findings
According to "Prerequisites and recommendations", Inspector and Guardduty are options. We can integrate findings of those Services, but not necessary.
https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-setup-prereqs.html