Categories
Technology

AWS News This Week

Deploying AWS Config Conformance Packs Using CloudFormation:

CloudFormation enables users to deploy application resources through a single text file. This takes a lot of the heavy lifting out of the configuration process and allows you to take advantage of the simplicity of using yaml or json to provision a collection of AWS resources with Infrastructure as Code (IAC).

AWS Config provides users with a record of historical changes made to your AWS resources. The service is very simple to set up and get started. You can configure and customize compliance rules to best-fit your needs. AWS Config continuously records the changes you make and provides a dashboard to monitor those changes and level of compliance with the rules set for your account or organization.

AWS Config Conformance Packs are used for quickly evaluating your AWS environment with rules that you specify or leveraging rules and remediation actions that AWS Config manages across your account or organization. They provide a ‘general-purpose compliance framework to help you create security, operational, or cost-optimization governance checks’.

Now you can leverage an AWS CloudFormation template to launch a Conformance pack. Here is an example of what a template looks like using yaml or json. Here’s a screenshot that shows what resources can be specified in your file before launching your CloudFormation stack –

Resources mentioned in this post:

Dale Yarborough

By Dale Yarborough

I am a Software Engineer at General Motors and Appalachian State University Alum. Previously: Whole Foods Market IT, Charles Schwab