All Content tagged with AWS Config

AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources.

Content language: English

Select up to 5 tags to filter
Sort by most recent
AWS config query to list all instances where security group allow ingress port 22 from 0.0.0.0
2
answers
0
votes
145
views
asked a month ago
I provide IAM permission for user to enable AWS Config with Full access to AWS Config through this AWS Doc:...
4
answers
0
votes
147
views
asked a month ago
Hi AWS, we have a list of security controls as mentioned below. We are preferring the use of AWS Trusted Advisor and the Remediator to remediate them, but I am not sure if the Trusted Advisor will...
1
answers
0
votes
202
views
profile picture
asked a month ago
Hi AWS, I am writing an SCP to enable **AWS Config** and **AWS GuardDuty**. The approved regions are `us-east-1`, `us-east-2`, `us-west-1`. Here is the SCP code: ``` { "Version": "2012-10-17", ...
2
answers
0
votes
287
views
profile picture
asked a month ago
So I have problems with [ebs-in-backup-plan](https://docs.aws.amazon.com/config/latest/developerguide/ebs-in-backup-plan.html) because it flags some systems that are outside of my backup plan because...
1
answers
0
votes
215
views
asked a month ago
I wanted to create a config rule for my entire org to require specific tags and key values. I was able to deploy this rule from my management account using Cloudshell with this command: ``` aws...
1
answers
0
votes
161
views
Feiock
asked 2 months ago
I am starting to test and roll out patch management, I do have some older machines I think I will need to get SSM manager up for, but still looking forward to using this. So on the home Patch...
1
answers
0
votes
280
views
asked 2 months ago
As a beginner for Security Hub, I see Security Hub Security Standard checks need to enable AWS Config. So which resources I need to record for Security Standard checks to work properly. For example I...
2
answers
0
votes
349
views
asked 2 months ago
Hi AWS, I have created an SCP to explicitly deny use of AWS services other than 4 approved AWS regions, i.e. `us-east-1`, `us-east-2`, `us-west-1` and `us-west-2`. Here is the SCP code: ``` { ...
1
answers
0
votes
201
views
profile picture
asked 2 months ago
Hi, everyone! I'm creating a custom Lambda AWS Config rule to detect when a user does not have MFA activated. I've set the rule trigger type to fire on configuration changes within the scope of the...
2
answers
0
votes
328
views
asked 2 months ago
Hi AWS, we have recently deployed AWS Config Conformance packs to detect non-compliant resources and remediation was done manually. It has improved the performace score to a certain extent but now the...
2
answers
0
votes
179
views
profile picture
asked 2 months ago
Hi, I have deployed AWS Control Tower in the Mumbai region and now wish to govern additional regions: Hyderabad, Tokyo, and North Virginia. However, when attempting to update the Control Tower, I...
1
answers
1
votes
367
views
profile picture
asked 2 months ago