Search the Community
Showing results for tags 'aws config'.
-
AWS Control Tower now helps reduce redundant AWS Config configuration items by limiting recording of global resources to home Regions only. Previously, AWS Control Tower configured AWS Config to record global resources in all Regions. Since global resources are not tied to a specific AWS Region, changes to global resources are identical across Regions. Limiting recording for global resources (such as IAM users, groups, roles, and customer managed polices) means redundant copies of global resource changes are no longer stored in every Region. This update brings resource recording into conformance with AWS Config best practices. A full list of global resources is available in AWS Config documentation. View the full article
-
AWS Config now supports 15 new resource types including Amazon SageMaker, Elastic Load Balancing, AWS Batch, AWS Step Functions, AWS Identity and Access Management Access Analyzer, Amazon WorkSpaces, Amazon Route 53 Resolver, Amazon Managed Streaming for Apache Kafka, and AWS Database Migration Service. For the full list of newly supported resource types see [1]. View the full article
-
AWS Security Hub now automatically receives AWS Config managed and custom rule evaluation results as security findings. AWS Config allows security and compliance professionals to assess, audit, and evaluate the configurations of their AWS resources via Config rules, which evaluate the compliance of AWS resources against specified policies. Examples of resource misconfigurations detected by Config rules include publicly-accessible Amazon S3 buckets, unencrypted EBS volumes, and overly-permissive IAM policies. When a Config rule evaluation passes or fails, you will now see a ‘passed’ or ‘failed’ finding for that evaluation in Security Hub. Any updates to the status of the Config rule evaluation will be automatically updated in the Security Hub finding. This new integration between Security Hub and AWS Config expands the centralization and single pane of glass experience by consolidating your Config evaluation results alongside your other security findings, allowing you to more easily search, triage, investigate, and take action on your security findings. View the full article
-
- security hub
- aws config
-
(and 1 more)
Tagged with:
-
AWS Config lets you assess, audit, and evaluate how your AWS resources are configured, and helps you determine your overall compliance against the configurations specified in your internal guidelines. You can use AWS Config aggregators to collect your configuration and compliance data from the below sources, and aggregate that data into a single account and AWS Region to get a centralized view of your resource inventory and compliance. Multiple accounts and multiple AWS Regions. A single account and multiple AWS Regions. An organization in AWS Organizations and all the accounts in the organization that have AWS Config enabled. View the full article
-
Starting today, AWS Systems Manager Explorer provides a summary of AWS Config rules and associated resource compliance, to help you check overall compliance status and quickly find non-compliant resources. Systems Manager Explorer is an operations dashboard that provides a view of your operations data across your AWS accounts and Regions, helping you see where you may need to investigate and remediate operational issues. AWS Config enables you to assess, audit, and evaluate the configurations of your AWS resources. View the full article
- 1 reply
-
- aws
- systems manager
-
(and 1 more)
Tagged with:
-
Forum Statistics
67.4k
Total Topics65.3k
Total Posts