Refer to the following guide to learn how to use IAM in the cloud\
<https://scribehow.com/shared/Creating_an_IAM_User_and_User_Group_in_AWS_Management_Console__hWNiiXlcRJKFqYZZEJD-cg>

Sign in to **AWS Management Console** as an **IAM User**

**Pre-requisite** - Ensure you have selected the AWS region closest to your location\
For this guide, we will be using us-east-2 (Ohio) as a preferred choice

Type **AWS Config** in the search bar and click on **AWS Config** to view the AWS Config Page

**What is AWS Config?**

AWS Config is a service provided by Amazon Web Services (AWS) that enables you to assess, audit, and evaluate the configurations of your AWS resources continuously. It helps you maintain compliance with your organization's policies, monitor changes to your AWS environment, and troubleshoot configuration issues.

On the **AWS Config** page click on the **Get started** button on the right side

**Settings** wizard will open and select the option **All resource types with customizable overrides**

Scroll to the **Default settings** section and select **Continuous recording** radio button

Scroll to the **Data governance** section and select the option **Create AWS Config service-linked role**

**What is Data governance in AWS Config?**

Data governance refers to the set of practices and controls implemented within the service to ensure the integrity, security, and compliance of data related to the configurations of AWS resources. AWS Config provides features and capabilities that support data governance objectives by enabling organizations to assess, monitor, and manage the configurations of their AWS environment effectively.

Scroll to the **Delivery method** section and select the option **Create a bucket** and give the name "**aws-config-bucket-in28minutes**"

Scroll to the **Amazon SNS topic** and checkbox the option

**What is Amazon SNS topic in AWS Config?**

In Amazon Web Services (AWS), an Amazon SNS (Simple Notification Service) topic is a communication channel used to send messages or notifications to multiple subscribers or endpoints. AWS Config does not directly use Amazon SNS topics as a feature within its service.

Click on the **Next** button on the right side

**Rules** wizard will open, select all the rules

Scroll the page and click on the **Next** button

**Review** wizard will open, review the configurations and click on the **Confirm** button

Congratulations on successfully setting up AWS Config and completing this lab! Well done!

In conclusion, we successfully configured AWS Config to monitor inventory and changes to AWS resources, established rules for evaluation, selected resource tracking preferences and initiated continuous monitoring of our AWS environment.

Amazon Web Services

This guide provides step-by-step instructions on how to configure AWS Config and AWS Config Rules.

Configuring AWS Config and AWS Config Rules