By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Security Hub - Setup aggregated regions

0

Hi,

I have a question about setting upp Security Hub and aggregated region.

If I have Region A - I do all the steps to set up Security Hub. Then I set Region A as the aggregation region. In Region B, do I need to do all the steps to set up Security Hub from scratch (delegate admin, enable, add members etc like Region A) and then link the region? or can I just link the region directly? If I link directly does Security Hub perform controls on every member account in Region B even though there is no "members" in Region B account list? I can't find any documentation that answers that specific question.

Thank you! //N

Topics
Security, Identity, & Compliance
Tags
AWS Security Hub
Language
English
kallsbo
asked a year ago254 views
1 Answer
0

In Region A of the delegated admin for security hub, located in settings you need to setup up your aggregation region.

  • Delegated admin is global and not per region.
  • Member accounts only list other accounts and not itsself. If you are in an org or invite other accounts then they appear here.
  • Member accounts are not regions but other AWS accounts that is not the current Admin account
  • I assume your not using an origanisation? As you will need to also configure Security Hub in each account also.

Hope this helps

profile picture
EXPERT
Gary Mclean
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content