Enabling AWS Config Reports

You can use CloudCheckr to report on data from AWS Config. If the access key and secret key used when configuring your project does not have permissions to report on AWS Config activity you will need to update that group or user's permissions within AWS IAM.


Procedure

  1. Log in to your Amazon Web Services Management Console.
  2. Load the Identity and Access Management (IAM) dashboard.
  3. From the right-hand IAM menu, click Groups.
  4. Select the group that contains the user whose access and secret key were added to CloudCheckr.
  5. Click the Permissions tab.
  6. Click the Manage Policy link.
  7. Within the policy document, add the following:
    "config:DescribeDeliveryChannels","config:DescribeDeliveryChannelStatus","config:DescribeConfigurationRecorders","config:DescribeConfigurationRecorderStatus",
  8. Click Apply Policy.
    The next snapshot that CloudCheckr takes of your AWS account will also retrieve and report on AWS Config.

How did we do?