Compliance Check for EC2 and S3 Using AWS Config

#aws #ec2 #s3 #awsconfig

“ I have checked the documents of AWS to resolve the issue of compliance check for AWS services. So I got AWS Config for compliance purposes. Pricing of AWS Config depends on configuration item and rule created.”

AWS Config continually assesses, audits and evaluates the configurations and relationships of your resources on AWS, on premises and on other clouds.

In this post, you will get to know how to do compliance check for ec2 and s3 using aws config. Here I have used an ec2 server and a s3 bucket for compliance check on this using config service rules.

Prerequisites

You’ll need an Amazon EC2 Server for this post. Getting started with amazon EC2 provides instructions on how to launch an EC2 Server.

You’ll need an Amazon Simple Storage Service for this post. Getting started with Amazon Simple Storage Service provides instructions on how to create a bucket in simple storage service. For this blog, I assume that I have an ec2 server and a s3 bucket created.

Architecture Overview

The architecture diagram shows the overall deployment architecture with data flow, amazon ec2, amazon s3 and aws config.

Solution overview

The blog post consists of the following phases:

Create Rules for EC2 and S3 Compliance in AWS Config
Enable Block Public Access Option in S3 Bucket for Compliance Purpose

I have a s3 bucket and a ec2 server as below →

Phase 1: Create Rules for EC2 and S3 Compliance in AWS Config

Open the AWS Config console and add an AWS managed rule for ec2 and s3 service. Once the rule is created, open the resource inventory and checkout the compliant and noncompliant rule.