Questions tagged with AWS Config
Content language: English
Sort by most recent
I am using EC2 Ubuntu 20.04 Linux instance (t2.micro). After 3/4 days, My instance status showed "1/2 checks passed". I have some small websites running in this instance. When this message appears, I cannot able to access those websites. Currently, each time I reboot my instance, and after some time, the status checked showed 2/2 checks passed. Then, I can able to access my website. Rebooting after 3/4 days at regular intervals is very painful. Please help me to solve my issue.
hello , i have a list of clients phone numbers
and i want to verify if those phone numbers are valid , are mobile and not landline and the carrier also
1 - my question is how to do this ? i didn't find enough information about this in the pinpoint service?
2 - what are the limit of validating phone numbers (what is the number of requests i can do per day) for the free tier account?
and thank's in advance
I have SecurityHub setup in a central account but keep getting logs where its getting AccessDenied when trying to preform a config:GetComplianceDetailsByConfigRule on resources that security hub itself has setup. One example of the error is the following:
```
"eventSource": "config.amazonaws.com",
"eventName": "GetComplianceDetailsByConfigRule",
"awsRegion": "eu-west-2",
"sourceIPAddress": "securityhub.amazonaws.com",
"userAgent": "securityhub.amazonaws.com",
"errorCode": "AccessDenied",
"errorMessage": "User: arn:aws:sts::{accountID}:assumed-role/AWSServiceRoleForSecurityHub/securityhub is not authorized to perform: config:GetComplianceDetailsByConfigRule on resource: securityhub-s3-bucket-logging-enabled-1b6b206d because no identity-based policy allows the config:GetComplianceDetailsByConfigRule action",
"requestParameters": null,
"responseElements": null,
```
Has anyone had this issue before and know of a fix to stop getting UnauthorizedAPICalls alerting?
For those of you that use multipart uploads to S3 in AWS, here's an article that you should read. If you use this, then you know that sometimes multipart uploads fail. AWS stores those failed uploads in your S3 bucket and charges you for them every day, unless you have a Lifecyle policy set to to delete them. Here's an article on how to do that. You should also ask for a refund of those charges.
https://aws.amazon.com/blogs/aws/s3-lifecycle-management-update-support-for-multipart-uploads-and-delete-markers/
AWS is going to issue a $340 refund for me since I use this quite a bit to back up my PC backups. Thanks AWS. #aws #s3
I've coded an application that uploads and does some other functions to my AWS account using Python and I found out that AWS was charging me for space I didn't know I was using, since it doesn't show up in my bucket.
I see you can enable pre defined security conformance packs like CIS, AwS foundational or PCI via both aws config and security hub
is there any difference in enabling them from one or other?
can we enable them via security hub only and leave the conformance pack deactivated in config?
can you enable AwS foundational and other security standards only in security hub or do the conformance packs also need to be enabled in aws config?
I am executing filter to Perzonalize, where the filterValues returns a message that the maximum length is 1000 and my filter has a length of 6664. what can I do about it so that it takes the full length of my filter?
Documentation: [https://docs.aws.amazon.com/personalize/latest/dg/filter-real-time.html]()
Error message:
```
at 'filterValues' failed to satisfy constraint: Map value must satisfy constraint: [Member must have length less than or equal to 1000, Member must have length greater than or equal to 0]\n at Object.extractError (/var/runtime/node_modules/aws-sdk/lib/protocol/json.js:52:27)
```
your Server/Customer with the *** has attacked one of our servers/partners.
The attackers used the method/service: *badbot* on: *Thu, 21 Jul 2022 20:19:04 +0200*.
The time listed is from the server-time of the Blocklist-user who submitted the report.
The attack was reported to the Blocklist.de-System on: *Thu, 21 Jul 2022 20:19:03 +0200*
Please help i’m not understanding what is happening
The AWS Config [Put_Evaluations API call](https://docs.aws.amazon.com/config/latest/APIReference/API_PutEvaluations.html) has a maximum limit of 100 resource evaluations for a Custom Rule. Resource types such as IAM policies or VPC Security Groups in an AWS Account would easily have more than 100 resources available to evaluate. Attempting to do so, however, results in an HTTP 400 Error: "Member must have length less than or equal to 100"
Splitting the resource array into multiple put_evaluations requests doesn't work; the ResultToken becomes invalid after just one invocation and results in InvalidResultTokenException.
Is this a limit that can be increased? If not, are there any recommended workarounds?
Hi, I'm trying to implement cloud stack using template designer using the components to implement VPC, subnets, Route table and IG without using yaml or jason codes . Please could someone assist on this. Much Appreciated!
I had gone through all the advanced queries under AWS config service to generate a report with AMI names, Operating system and OS Version details of all AMI's using by compute instances in my tenancy, but i could not find any queries around it, is there a way to generate a report capturing AMI details in detailed.
Under configuration columns i only see AMI ID and Operating System beyond that i can't find any further details of AMI
I have deployed few controls using Backup Audit Manager to check the compliance of the backups but most of them have control status of insufficient data. Why is that? I only have one control passing compliant status.
I checked configuration recorder status, it is recording
I have the following rule which clearly is Daily backup at least once and least retention of 7 days. Still the rule control is failing.
```
{
"ruleName": "daily_backup_rule",
"scheduleExpression": "cron(0 21 ? * * *)",
"startWindowMinutes": 60,
"completionWindowMinutes": 480,
"lifecycle": {
"toDeletedAfterDays": 8
}
}
```
