Slide 48
Slide 48 text
© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved. 48
Detect non-compliance with AWS Config Rules
• Config Rules represent the ideal configuration settings
• Config Rules are triggered on each resource configuration
change
• AWS provides more than 120 managed Rules
• Ex: Approved AMIs, Enforce Tags, EBS Volumes encrypted, RDS multi-AZ,
CloudTrail enabled, MFA Enabled, S3 Public Read prohibited, …
120+ AWS Config Managed Rules
• … and Restricted SSH