Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

Security Hub - Setup aggregated regions

0

Hi,

I have a question about setting upp Security Hub and aggregated region.

If I have Region A - I do all the steps to set up Security Hub. Then I set Region A as the aggregation region. In Region B, do I need to do all the steps to set up Security Hub from scratch (delegate admin, enable, add members etc like Region A) and then link the region? or can I just link the region directly? If I link directly does Security Hub perform controls on every member account in Region B even though there is no "members" in Region B account list? I can't find any documentation that answers that specific question.

Thank you! //N

Themen
Sicherheit, Identität & Konformität
Tags
AWS Sicherheits-Hub
Sprache
English
kallsbo
gefragt vor einem Jahr267 Aufrufe
1 Antwort
0

In Region A of the delegated admin for security hub, located in settings you need to setup up your aggregation region.

  • Delegated admin is global and not per region.
  • Member accounts only list other accounts and not itsself. If you are in an org or invite other accounts then they appear here.
  • Member accounts are not regions but other AWS accounts that is not the current Admin account
  • I assume your not using an origanisation? As you will need to also configure Security Hub in each account also.

Hope this helps

profile picture
EXPERTE
Gary Mclean
beantwortet vor einem Jahr

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt