Security Hub - Setup aggregated regions

Question

Hi,

I have a question about setting upp Security Hub and aggregated region.

If I have Region A - I do all the steps to set up Security Hub. Then I set Region A as the aggregation region.
In Region B, do I need to do all the steps to set up Security Hub from scratch (delegate admin, enable, add members etc like Region A) and then link the region? or can I just link the region directly? If I link directly does Security Hub perform controls on every member account in Region B even though there is no "members" in Region B account list?
I can't find any documentation that answers that specific question.

Thank you!
//N

Answer

In Region A of the delegated admin for security hub, located in settings you need to setup up your aggregation region.

* Delegated admin is global and not per region.
* Member accounts only list other accounts and not itsself. If you are in an org or invite other accounts then they appear here.
* Member accounts are not regions but other AWS accounts that is not the current Admin account
* I assume your not using an origanisation? As you will need to also configure Security Hub in each account also.

Hope this helps

Security Hub - Setup aggregated regions

相關內容