Auditing Resource Compliance with AWS Config
In this hands-on lab, we'll implement AWS Config rules and use Config for compliance auditing and remediation. We will configure compliance rules for evaluating EC2 instance type, if S3 versioning is enabled, EC2 instances in a VPC, and if CloudTrail is enabled. These rules will give you firsthand knowledge about how the AWS Config service works. We will then explore the configuration management aspect of Config.
NOTE: You may see other resources detected by Config; you can safely disregard those extra resources. Config takes a long time to show correctly, especially in us-east-1. Often stopping and starting Config will hurry the results.