Centralized Management of WAF deployed across various AWS accounts

Question

Hi there,
I have multiple AWS accounts managed by AWS organizations and I have deployed WAF in few of the accounts. I would like to know if there is a way of managing the WAF across various accounts centrally? if yes, how can I do it?
I would like to to see the details of WAF used in various accounts from a single page (centralised control) like we can see the logs of multiple accounts in OpenSearch, I am looking for a similar solution. Touch base with me. Thanks!

Accepted Answer

Hi, like others mentioned, Firewall Manager can be used to manager AWS WAF across Organization. Here are some of the blogs which guides you through the setup and use-cases. I hope it helps.
https://aws.amazon.com/blogs/security/centrally-manage-aws-waf-api-v2-and-aws-managed-rules-at-scale-with-firewall-manager/
https://aws.amazon.com/blogs/security/use-aws-firewall-manager-to-deploy-protection-at-scale-in-aws-organizations/

**If the answer is helpful, please click "Accept Answer" and upvote it. **

Answer

Hi,

Using Firewall Manager, you can roll out AWS WAF rules. You can use AWS Organization to manage Firewall Manager.
You can find additional information at the link https://docs.aws.amazon.com/organizations/latest/userguide/services-that-can-integrate-fms.html

Answer

Here you can find an inspection pattern which leverage a centralied WAF and Firewall Manage: https://docs.aws.amazon.com/whitepapers/latest/building-scalable-secure-multi-vpc-network-infrastructure/centralized-inbound-inspection.html

Centralized Management of WAF deployed across various AWS accounts

Relevant content