Disable security hub control from audit accounts for all the accounts under the organization using Terraform
I am looking for a solution to disable security hub control from audit accounts for all the accounts under the organization using Terraform. Currently, I delegated audit account as admin of security hub. Currently, I am working a project where a customer need to disable several number of securityhub control which is not applicable to their environment. How can I achieve it using Terraform? I already setup security hub orgazation using terraform. Please share the expertise
- Newest
- Most votes
- Most comments
You can use aws_securityhub_standards_control resource in terraform to manage controls.
Thank you Rares Boboc! But I am using aws_securityhub_standards_control resources. But I want to disable the specific control from the organization, that means all the accounts under organization using Terraform. But I did not see that solutions.
Hope it might help you in building the approach
Disabling Security Hub controls in a multi-account environment - https://aws.amazon.com/blogs/security/disabling-security-hub-controls-in-a-multi-account-environment/
https://github.com/hashicorp/terraform-provider-aws/issues/33406
Relevant content
- asked 2 years ago
- asked 10 months ago
AWS OFFICIALUpdated 2 years ago- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
