- 最新
- 投票最多
- 评论最多
Hi,
You can find some of the example SCPs for EC2 here:
Please note that this doesn't have all security controls you are looking out for. Once you have all the preventive controls list ready then explore the options and feasibility of implementing them using SCP and AWS Config and Config Conformance packs:
Conformance packs are a powerful feature in AWS Config that help you manage the configuration compliance of your AWS resources at scale. They bundle together AWS Config rules and optional remediation actions into a single, deployable entity.
https://docs.aws.amazon.com/config/latest/developerguide/operational-best-practices-for-EC2.html
Similarly you can find for other services you have mentioned.
Good part is that you don't have to author everything from scratch. Following link has a lot of them from AWSLabs:
Hope it helps.
相关内容
- AWS 官方已更新 2 年前
- AWS 官方已更新 8 个月前