All Content tagged with AWS Config
AWS Config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources.
Content language: English
Select up to 5 tags to filter
Sort by most recent
AWS config query to list all instances where security group allow ingress port 22 from 0.0.0.0
I provide IAM permission for user to enable AWS Config with Full access to AWS Config through this AWS Doc:...
Hi AWS, we have a list of security controls as mentioned below. We are preferring the use of AWS Trusted Advisor and the Remediator to remediate them, but I am not sure if the Trusted Advisor will...
Hi AWS, I am writing an SCP to enable **AWS Config** and **AWS GuardDuty**. The approved regions are `us-east-1`, `us-east-2`, `us-west-1`. Here is the SCP code:
```
{
"Version": "2012-10-17",
...
So I have problems with [ebs-in-backup-plan](https://docs.aws.amazon.com/config/latest/developerguide/ebs-in-backup-plan.html) because it flags some systems that are outside of my backup plan because...
I wanted to create a config rule for my entire org to require specific tags and key values. I was able to deploy this rule from my management account using Cloudshell with this command:
```
aws...
I am starting to test and roll out patch management, I do have some older machines I think I will need to get SSM manager up for, but still looking forward to using this. So on the home Patch...
As a beginner for Security Hub, I see Security Hub Security Standard checks need to enable AWS Config. So which resources I need to record for Security Standard checks to work properly. For example I...
Hi AWS, I have created an SCP to explicitly deny use of AWS services other than 4 approved AWS regions, i.e. `us-east-1`, `us-east-2`, `us-west-1` and `us-west-2`. Here is the SCP code:
```
{
...
Hi, everyone!
I'm creating a custom Lambda AWS Config rule to detect when a user does not have MFA activated. I've set the rule trigger type to fire on configuration changes within the scope of the...
Hi AWS, we have recently deployed AWS Config Conformance packs to detect non-compliant resources and remediation was done manually. It has improved the performace score to a certain extent but now the...
Hi,
I have deployed AWS Control Tower in the Mumbai region and now wish to govern additional regions: Hyderabad, Tokyo, and North Virginia. However, when attempting to update the Control Tower, I...