AWS Config

Essentials

  • Visibility into resource configurations

    • Detailed configurations

      • Snapshots of resource inventory

      • Deliver reports to S3

    • Relationships between resources

      • e.g. Which resources use a particular security group?

    • Historical timelines

    • Integrates with Cloudtrail

  • Notifications

    • Resource is created, modified, or deleted

    • Configuration stream deliver to SNS topic

Config Rules

  • Evaluates compliance

  • Managed Rules

    • Provided by AWS

    • e.g. IS EBS volume encrypted, only approved AMIs used

  • Custom Rules

    • Lambda function

PreviousAmazon InspectorNextAWS Shield

Last updated

Was this helpful?