AWS re:Post Knowledge Center Feedback Survey

Help us improve the AWS re:Post Knowledge Center by sharing your feedback in a brief survey. Your input can influence how we create and update our content to better support your AWS journey.

how to configure AWS Config to block non-FIPS endpoint for a particular account

how to configure AWS Config to block non-FIPS endpoint for a particular account. Does one need to be account root to see this setting?.

Topics: Management & Governance
Tags: AWS Config
Language: English

Rakesh

asked 2 years ago309 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Hi There

AWS Config is a service that helps you assess, audit, and evaluate the configurations and relationships of your resources. You can use rules evaluate the configuration settings of your AWS resources. It will not help you block access to specific endpoints.

One way you could achieve this is to use AWS Route53 DNS Firewall to block all non-FIPS endpoints.

See https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/resolver-dns-firewall-overview.html

EXPERT

Matt Barbieri

answered 2 years ago

Relevant content

How to check what all resources assigned to Particular AWS Account
Ravi1982
asked 2 years ago
Unable to take action on non-compliant resources in child accounts despite AWS Config configuration in root account
Accepted Answer
rePost-User-1506060
asked 3 years ago
How to restrict certain endpoints from one AWS-Account to Another using AWS-Network-Firewall ?
Deepak
asked 2 years ago
How to stop or disable aws config recorder in Control Tower
Accepted Answer
Satheesh Kakarla
asked 3 years ago
Why is my AWS Config data not collected by the aggregator for my AWS account or AWS Organizations account?
AWS OFFICIALUpdated 2 years ago
How do I resolve errors with limitations for AWS Config advanced query?
AWS OFFICIALUpdated 2 years ago
How can I deploy an Amazon SageMaker model to a different AWS account?
AWS OFFICIALUpdated 2 years ago
How can I use AWS Config to receive custom email notifications when a resource is deleted in my AWS account?
AWS OFFICIALUpdated 8 months ago
Access Redshift in cross region setup using VPC endpoint and VPC Peering
EXPERT
RiteshKSinha
published a year ago
AWS Control Tower Log Archive Bucket Replication: A Secure Alternative to Policy Modifications
EXPERT
Matt Barbieri
published 2 months ago

how to configure AWS Config to block non-FIPS endpoint for a particular account

Add your answer

Relevant content