Category: AWS Config

In this post, we’ll walk you through the various best practices and recommendations for optimizing AWS Config costs. This also provides technical guidance for looking at the rules and the recorder, how to start deleting or removing rules that aren’t needed, and then editing the Settings of Config, specifically the “Resource types to record”, to […]

AWS Config continuously monitors and records your AWS resource configurations. You can use the service to automate the evaluation and remediation of recorded configurations against desired configurations. You also can review changes in configurations and relationships between AWS resources and dive into the history of a resource configuration. AWS Config conformance packs provide a general-purpose compliance […]

AWS allows customers to build, experience, and innovate in their AWS accounts, resulting in dynamic environments. You can manage your resources changes using different controls, such as: Preventive controls with AWS Identity and Access Management (IAM) policies Detective controls with AWS Config Rules Preventive and Detective controls with continuous integration and continuous delivery (CI/CD) pipelines […]

Customers need a way to do lifecycle management of AWS resources in the AWS Cloud. Many customers leverage managed solutions providers to manage their AWS accounts, and they’re looking for AWS native solutions and integrations to solve their business problems. Lifecycle management includes discovering new resources from customer’s AWS environment, populating them via federation into […]

Customers deploy series of AWS resources to support their workloads in the cloud. These organizations, as part of their maturity journey, must help managing the lifecycle of their AWS Resources using existing IT Service Management tool, such as ServiceNow. Manually executing these tasks via both consoles (ServiceNow and AWS Console) is inefficient and time-tasking. With […]

In this post, I’ll show you how to find most evaluated AWS Config rules to dive deep into AWS Config charges on your invoice by using AWS CloudTrail Lake. The solution uses the new AWS CloudTrail feature, CloudTrail Lake, to analyze CloudTrail events. AWS Config is a service that enables you to assess, audit, and […]

AWS AppConfig helps you create, manage, and deploy application configuration. One crucial use case for AppConfig is feature flagging, which lets you release features quickly and safely. Using AppConfig Feature Flags, you can separate code from configuration data and hide new features behind a configuration flag.  When ready to release that feature, you simply update the […]

[Update on July/26/2023] AWS Config recorder has recently provided support for excluding resource types from configuration change tracking, prior to this change all resource types needed to be explicitly listed. This blog has been updated to incorporate that change and make it easier to operationally manage. Some of our largest customers use AWS Control Tower […]

Using feature flags and other runtime configuration types is a fast-evolving technology segment. Adjusting your software behavior with a minor configuration update instead of deploying code lets teams move faster and more safely. Furthermore, releasing a feature using a feature flag allows engineering teams to turn on features to a limited set of users and […]

AWS Config lets you evaluate your AWS resources with a desired configuration state using AWS Config Rules. In AWS Config, you can define two types of rules, managed rules and custom rules. Managed rules are AWS provided rules that will evaluate your resources with a predefined configuration state that address some of the most common […]