You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We have a base Config setup (daily.. etc..) that we have click-ops applied in each account. We sometimes forget to do it in new accounts.
Config configured correctly is vital for the proper functioning of Security Hub. I suggest we make part of our terraform bootstrap of accounts include an AWS config setup.
Things to note:
not sure whether terraform will "update" over the top of recorders that we have already set up by click-ops. Need to check.
Items to set:
frequency to daily rather than continuous (too expensive at continuous)
send to common config bucket (needs special policy on the bucket to allow writes)
reduce days of retention (? we have no legislative need for keeping config records?)
The text was updated successfully, but these errors were encountered:
We have a base Config setup (daily.. etc..) that we have click-ops applied in each account. We sometimes forget to do it in new accounts.
Config configured correctly is vital for the proper functioning of Security Hub. I suggest we make part of our terraform bootstrap of accounts include an AWS config setup.
Things to note:
Items to set:
The text was updated successfully, but these errors were encountered: