By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Organization Config (with aggregator) eventbridge rule

0

I tested in a PoC environment creating an AWS Config and then an eventbridge rule to send the config events (non-compliant) to a cloudwatch log group (and then to firehose to send a vendor) and it works great!. But, I did the same in a config account in the production environment having a config with aggregator in all the accounts and regions and the eventbridge rule it doesn't track anything, it doesn't work.E I need to send all the non-compliant events of the organization. What could be the problem? How do i do it? Thank you.

Topics
Management & GovernanceServerlessApplication Integration
Tags
AWS ConfigAmazon EventBridge
Language
English
victoria b
asked 2 years ago487 views
2 Answers
0

Hello,

this APG pattern is the solution for the exact same thing which you can refer https://apg-library.amazonaws.com/content/9862df6d-3d3d-482d-b122-04198ed691e2

AWS
Vijaya Diddi
answered 2 years ago
  • victoria b
    2 years ago

    Thank you Vijaya. Sadly, I can't access to see that APG pattern. So, you a re saying there is to: Use an Amazon EventBridge rule to trigger notifications when AWS resources are non-compliant from one centralized configuration account with config aggregator in all the accounts and regions of the organization?. If you have another link I would really appreciate it. As I said, I tested with on region in one account and it works. But the problem is with a centralized account. What I need is to send those events to a Log Group. Thank you.

0

I there any update about this topic?? Unfortunately I've not access to the link :(

aortega
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content