A company has 10 accounts that are part of an organization in AWS Organizations. AWS Config is configured in each account. All accounts belong to either the Prod OU or the NonProd OU.
The company has set up an Amazon EventBridge rule in each AWS account to notify an Amazon Simple Notification Service (Amazon SNS) topic when an Amazon EC2 security group inbound rule is created with 0.0.0.0/0 as the source. The company’s security team is subscribed to the SNS topic.
For all accounts in the NonProd OU, the security team needs to remove the ability to create a security group inbound rule that includes 0.0.0.0/0 as the source.
Which solution will meet this requirement with the LEAST operational overhead?
masetromain
Highly Voted 2 years, 5 months agomasetromain
2 years, 5 months agoMikelH93
2 years, 1 month agomifune
1 year, 2 months agob3llman
1 year, 11 months agoaokaddaoc
1 year, 7 months agoMaria2023
Highly Voted 2 years agotgv
5 months, 1 week ago12db8b7
2 weeks, 1 day agob3llman
1 year, 11 months agodqwsmwwvtgxwkvgcvc
1 year, 10 months agovn_thanhtung
1 year, 10 months agovn_thanhtung
1 year, 10 months agolongns
1 year, 9 months agoMalcnorth59
1 year, 1 month agoproawsk
Most Recent 2 months, 2 weeks agotgv
5 months, 1 week agoTorTo
5 months, 2 weeks agoaltonh
6 months agogrumpysloth
6 months, 3 weeks agochipimbiri
7 months, 2 weeks agosashenka
9 months, 1 week agoattila9778
7 months, 1 week agoamministrazione
10 months, 1 week agoMAZIADI
11 months agoasquared16
1 year agodzidis
1 year agoteo2157
1 year, 1 month agoMalcnorth59
1 year, 1 month agosse69
1 year, 2 months agoSmart
1 year, 2 months ago