AWS Config
| Owner | |
|---|---|
| Verification | |
| Tags | |
| Last edited time |
Record and track configuration changes for compliance auditing
dose not enforce - no deny rules, it will send an SNS notification - can add automations using SSM Documents for remediation , can trigger Event Bridge
🐳
a good tool to ask questions: is there SSSH access , is there a public S3
Compliance
Regional service - can join data to a single account
Rules types
- AWS managed rules
- Custom rules - need to create a Lambda function and then the rule - can set intervals or by creation - can trigger Event Bridge