Configuring AWS Config and AWS Config Rules | Scribe

    Configuring AWS Config and AWS Config Rules

    • Hafeez Baig |
    • 13 steps |
    • 2 minutes
    information ordinal icon

    Refer to the following guide to learn how to use IAM in the cloud\ <https://scribehow.com/shared/Creating_an_IAM_User_and_User_Group_in_AWS_Management_Console__hWNiiXlcRJKFqYZZEJD-cg>

    1

    Sign in to **AWS Management Console** as an **IAM User** **Pre-requisite** - Ensure you have selected the AWS region closest to your location\ For this guide, we will be using us-east-2 (Ohio) as a preferred choice

    2

    Type **AWS Config** in the search bar and click on **AWS Config** to view the AWS Config Page

    information ordinal icon

    **What is AWS Config?** AWS Config is a service provided by Amazon Web Services (AWS) that enables you to assess, audit, and evaluate the configurations of your AWS resources continuously. It helps you maintain compliance with your organization's policies, monitor changes to your AWS environment, and troubleshoot configuration issues.

    3

    On the **AWS Config** page click on the **Get started** button on the right side

    4

    **Settings** wizard will open and select the option **All resource types with customizable overrides**

    5

    Scroll to the **Default settings** section and select **Continuous recording** radio button

    6

    Scroll to the **Data governance** section and select the option **Create AWS Config service-linked role**

    information ordinal icon

    **What is Data governance in AWS Config?** Data governance refers to the set of practices and controls implemented within the service to ensure the integrity, security, and compliance of data related to the configurations of AWS resources. AWS Config provides features and capabilities that support data governance objectives by enabling organizations to assess, monitor, and manage the configurations of their AWS environment effectively.

    7

    Scroll to the **Delivery method** section and select the option **Create a bucket** and give the name "**aws-config-bucket-in28minutes**"

    8

    Scroll to the **Amazon SNS topic** and checkbox the option

    information ordinal icon

    **What is Amazon SNS topic in AWS Config?** In Amazon Web Services (AWS), an Amazon SNS (Simple Notification Service) topic is a communication channel used to send messages or notifications to multiple subscribers or endpoints. AWS Config does not directly use Amazon SNS topics as a feature within its service.

    9

    Click on the **Next** button on the right side

    10

    **Rules** wizard will open, select all the rules

    11

    Scroll the page and click on the **Next** button

    12

    **Review** wizard will open, review the configurations and click on the **Confirm** button

    13

    Service linked role created successfully

    information ordinal icon

    Congratulations on successfully setting up AWS Config and completing this lab! Well done! In conclusion, we successfully configured AWS Config to monitor inventory and changes to AWS resources, established rules for evaluation, selected resource tracking preferences and initiated continuous monitoring of our AWS environment.