AWS Systems Manager Parameter Store
Automated Security Response on AWS uses AWS Systems Manager Parameter Store for storage of operational data. The following parameters are stored in Parameter Store:
| Name | Value | Use |
|---|---|---|
|
|
AWS KMS key that will encrypt data for FSBP remediations |
Encryption of customer data, such as CloudTrail logs, as part of remediations |
|
|
AWS KMS key that ASR will use to encrypt data |
Encryption of solution data |
|
|
ARN of the Amazon SNS topic for the solution |
Notification of remediation events |
|
|
SNS topic for AWS Config updates |
Config.1 remediation |
|
|
Solution version |
|
|
|
|
Indicates whether the standard is active in the solution. A standard can be disabled for automated remediation by changing this to |
|
|
|
Short name for the security standard. For example: |
|
|
|
When one control uses the same remediation as another, these parameters accomplish the remap |
|
|
Include, Exclude, or Disabled |
Controls the Account ID filtering behavior for fully automated remediations |
|
|
Comma-delimited list of AWS Account IDs |
List of AWS Account IDs for which the solution should filter automated remediations. |
|
|
Include, Exclude, or Disabled |
Controls the Organizational Units (OUs) filtering behavior for fully automated remediations |
|
|
Comma-delimited list of Organization Unit Ids |
List of OUs for which the solution should filter automated remediations. |
|
|
Include, Exclude, or Disabled |
Controls the Resource Tag filtering behavior for fully automated remediations |
|
|
Comma-delimited list of Resource Tag Keys |
List of Resource Tag Keys for which the solution should filter automated remediations. |
