Questions tagged with AWS Security Hub
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello,
I have enabled a control via Control Tower "[EC2.18] Security groups should only allow unrestricted incoming traffic for authorized ports" for a specific OU. I know how to manually change the...
1
answers
0
votes
496
views
asked 3 months agolg...
I encountered an issue where I had to create an EC2 instance, but upon resolving the problem, I terminated the instance. However, despite having only created and terminated one instance, the AWS...
3
answers
0
votes
232
views
asked 3 months agolg...
I'd like to start the new feature Central Configuration of Security Hub. In Security Hub->Settings ->Configuration there is a button: Start central configuration. When I click it and then "Confirm and...
Accepted AnswerAWS Security Hub
1
answers
0
votes
152
views
asked 3 months agolg...
I have set up Quicksight to analyse the security hub results. We have set up a delegate account for the security hub. Only a few accounts are visible in the Quicksight dashboard; the rest are missing....
1
answers
0
votes
137
views
asked 3 months agolg...
Hey folks,
I have a customer-managed KMS key that was created to encrypt a specific CloudWatch **log group**. In the key policy, I have something like:
```
{
"Version": "2012-10-17",
"Id":...
2
answers
0
votes
604
views
asked 3 months agolg...
Security hub is enabled in one of the region, `us-east-1` and all the resources are in the region. I am attempting to write a Lambda function which takes an event which occurs when an image is...
1
answers
0
votes
134
views
asked 4 months agolg...
AWS Security hub findings are not getting updated after resolution also , Score is getting increased ..
1
answers
0
votes
122
views
asked 4 months agolg...
Good morning all, I am starting to lock down more of our account for obvious reasons, and as the subject states, security hub is showing a bunch of S3 buckets as Critical. The Title is "PCI.S3.2 S3...
2
answers
0
votes
186
views
asked 4 months agolg...
When using get_findings for ComplianceStatus i am not able to get the correct display if I select 'FAILED' or 'PASSED' as a compliance Status.
Here are my filters
```
filters = {}
# findings...
1
answers
0
votes
135
views
asked 4 months agolg...
Hi all,
I have a conformance pack deployed in AWS Config.
When turnning SecurityHub with default standards, it created Config rules and one of the rule is...
1
answers
0
votes
214
views
asked 4 months agolg...
Remove Security Hub linked regions without affecting other accounts findings in the same regionlg...
My Security Hub is configured for 4 accounts:
- Account A
- Account B
- Account C
- Account D - Security Hub delegated administrator account
My workloads are deployed in all accounts, but we only...
Accepted AnswerAWS Security Hub
1
answers
0
votes
153
views
asked 5 months agolg...
KMS.1 states that "IAM customer managed policies should not allow decryption actions on all KMS keys." Further, the documentation provides the following example for a satisfying this finding "For...
1
answers
0
votes
263
views
asked 5 months agolg...