Posted On: Jul 21, 2016

AWS Config continuously records configurations changes to resources in your AWS account and notifies you of these changes through Amazon Simple Notification Service (SNS). Config rules check these resources for compliance with desired configurations you specify. 

Now, you can record changes to the configuration of your ACM Certificates and RDS DB Instances, DB Subnet Groups, DB Snapshots, DB Security Groups, and Event Subscriptions using AWS Config. If you have chosen to record all supported resource types, AWS Config will automatically start recording configuration changes to RDS and ACM resources in your account. You can also specifically choose to record RDS and ACM resource types on the AWS Config settings page. Further, you can create AWS Config Rules to evaluate whether these RDS and ACM resources have the desired configurations. To get you started, we have added an example rule on GitHub that checks whether your RDS DB Instances are encrypted.

To learn more about this launch, read our documentation and visit the AWS Config Console.