Amazon Web Service has announced that Amazon Elastic Cloud Compute can be utilized to take action and report on configuration compliance for Custom compliance types, State Manager and Patch Manager. Earlier you could only open patch compliance information for instances patching by using the Patch Manager.
With the latest release you now also see the configuration compliance information for instances that are based on the characterized state from a State Manager document and association. You can specify a State Manager Association that test for the presence of an application or particular firewall port setting and then you can run a report to identify if the instances are in compliance with the detailed configuration. You can also characterize custom configuration compliance types to know as to when you to report if the particular registry setting has been disabled. In single accounts Compliance reports are available. You can also check out the compliance reports cross-region and cross-account by deploying a resource data which is sync to Amazon Simple Storage Service (Amazon S3). You can also anticipate this data by using Amazon QuickSight and Amazon Athena. At last, you can auto-remediate the instances established on compliance reports.
If the Instances are out of compliance then it will trigger an Amazon CloudWatch Events rule so that it can bring into compliance. Amazon System Manages is now available in all GovCloud and AWS Commercial region.
No comments:
Post a Comment