A company has 10 accounts that are part of an organization in AWS Organizations. AWS Config is configured in each account. All accounts belong to either the Prod OU or the NonProd OU.
The company has set up an Amazon EventBridge rule in each AWS account to notify an Amazon Simple Notification Service (Amazon SNS) topic when an Amazon EC2 security group inbound rule is created with 0.0.0.0/0 as the source. The company’s security team is subscribed to the SNS topic.
For all accounts in the NonProd OU, the security team needs to remove the ability to create a security group inbound rule that includes 0.0.0.0/0 as the source.
Which solution will meet this requirement with the LEAST operational overhead?
masetromain
Highly Voted 2 years, 3 months agomasetromain
2 years, 3 months agoMikelH93
1 year, 11 months agomifune
1 year agob3llman
1 year, 8 months agoaokaddaoc
1 year, 5 months agoMaria2023
Highly Voted 1 year, 10 months agotgv
3 months agob3llman
1 year, 8 months agodqwsmwwvtgxwkvgcvc
1 year, 8 months agovn_thanhtung
1 year, 8 months agovn_thanhtung
1 year, 8 months agolongns
1 year, 7 months agoMalcnorth59
11 months, 1 week agoproawsk
Most Recent 2 days agotgv
3 months agoTorTo
3 months agoaltonh
3 months, 3 weeks agogrumpysloth
4 months, 1 week agochipimbiri
5 months agosashenka
6 months, 4 weeks agoattila9778
4 months, 3 weeks agoamministrazione
8 months ago[Removed]
8 months agoMAZIADI
8 months, 2 weeks agoasquared16
9 months, 3 weeks agodzidis
10 months agoteo2157
11 months agoMalcnorth59
11 months, 1 week agosse69
11 months, 3 weeks ago