amazon-eks-node-1.23-fcg-pci-socs-v2.7c-20230720
Linux/Unix
Linux/Unix
Product Overview
v2.7c - EKS 1.23 AMI w/ FCG PCI SOCS Compliance Reporting w/ S3 Upload of report and Falco Container Security
- Includes AWS Cloud Watch Agent Configured to send alerts
- Will upload reports nightly to S3 Bucket - Supports Reading from EC2_TAG or Secrets or OS ENV
- EC2 Requires Instance Profile w/ AWS Secrets Read access to 'fcg/config' & Write to S3 Bucket
- Example Policies Available From Support and will be posted to github SECRETS_PATH: fcg/config [format: JSON, Key:Value
- {"S3_BUCKET":"BUCKET_NAME"} TAG: fcg_s3bucket
- For Using EC2 TAGS:
- Requires TAGS in MetaData enablement: * https://aws.amazon.com/about-aws/whats-new/2022/01/instance-tags-amazon-ec2-instance-metadata-service/ * https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-options.html
Updates:
- Realtime Container Scanning for malware and vulernabilities
- Additional PCI Hardening
- Malware Scanning
- STIG Hardening
- Discord Server for Support
- EKS 1.23+ Support Support: - support@autocloudtek.com
SSH Access:
- Ensure you launch with your key
- PORT 22
Usage:
- Use as an AMI in your EKS launch templates
- Configure AWS Secret or EC2_TAG for S3 Reports
- Falco logs go to cloudwatch
Version
amazon-eks-node-1.23-fcg-pci-socs-v2.7c-20230308
Categories
Operating System
Linux/Unix, Amazon Linux Amazon Linux 2
Delivery Methods