CloudWatch Events + Config

  • Use CloudWatch Events to detect and react to changes in the status of Config events.

  • You can create a rule that runs whenever there is a state transition, or when there is a transition to one or more states that are of interest.

  • Then, based on rules you create, CloudWatch Events invokes one or more target actions when an event matches the values you specify in a rule.

  • You can use this capability to create a CloudWatch Events rule to detect non-compliant notifications for specific resource types or specific rules and trigger Lambda functions to take corrective action and also configure notifications for specific resource types to specific targets such as SNS topics or SQS queues.

  • When Config detects changes that are non-compliant, you can create a CloudWatch Events rule that will trigger an Lambda function that can perform the corrective action.

PreviousCloudTrail Management & Data EventsNextSSM Parameter Store vs Secrets Manager

Last updated