What is AWS Cloud? AWS Global Infrastructure AWS Shared Responsibility Model AWS Well-Architected Framework AWS Compute Services Overview Amazon EC2 Fundamentals AWS Storage Services Amazon S3 Object Storage AWS Networking VPC Fundamentals AWS IAM Identity Access Management AWS Pricing and Billing Amazon RDS Managed Database Amazon VPC Peering and Endpoints Elastic Load Balancing ELB Amazon CloudWatch Monitoring AWS Auto Scaling Amazon Route 53 DNS AWS CloudFormation Infrastructure AWS Lambda Serverless Amazon DynamoDB NoSQL Amazon ElastiCache Redis Memcached AWS CloudFront CDN Amazon SQS SNS Messaging AWS Organizations SCPs AWS Config Compliance AWS Systems Manager Amazon GuardDuty Threat Detection AWS Shield DDoS Protection AWS Key Management Service KMS AWS Support Plans SLA

Back to Lessons

AWS Config Compliance

April 5, 2026

Configuration Monitoring

Track resource configurations and compliance over time.

Config Components

Config Rules (100+ managed):
- required-tags
- s3-bucket-public-read-prohibited
- rds-instance-storage-encrypted

Conformance Packs:
- Operational Best Practices
- CIS Benchmarks
- PCI-DSS

Remediation:
SSM Automation documents
Lambda functions
Systems Manager

Advanced Queries:
Resource inventory
Change timeline
Compliance dashboard

Pricing

$0.003/incident + $0.001/rule eval
Free tier: 1 recorder + 1 rule

Previous Lesson Next Lesson