AWS Systems Manager | Configuration Compliance Flashcards
Can I perform analytics and visualization on inventory data?
Configuration Compliance
AWS Systems Manager | Management Tools
Yes, in addition to a built-in inventory dashboard, you can build advanced analytics and visualizations on inventory data with Amazon Athena and Amazon QuickSight.
What is AWS Systems Manager configuration compliance?
Configuration Compliance
AWS Systems Manager | Management Tools
AWS Systems Manager lets you scan your managed instances for patch compliance and configuration inconsistencies. You can collect and aggregate data from multiple AWS accounts and Regions, and then drill down into specific resources that aren’t compliant. By default, AWS Systems Manager displays data about patching and associations. You can also customize the service and create your own compliance types based on your requirements.
Can I track changes to my configuration over time?
Configuration Compliance
AWS Systems Manager | Management Tools
Using an integration with AWS Config, you can monitor an instance’s compliance with a desired configuration through AWS Config rules. This capability allows security experts and compliance auditors to have a complete audit trail of instance configuration changes, as well as receive proactive notifications in the event of non-compliance.
How do I view the compliance levels of my instances?
Configuration Compliance
AWS Systems Manager | Management Tools
With AWS Systems Manager you can view patch compliance information, which tells you the detailed results of the patching process. You can easily get aggregate compliance details per instance. In addition, you can drill in further and for each instance you can determine which patches are installed, missing, not applicable, and which failed to install.