In this challenge, you will automate processes by using AWS services. First, you will enable AWS Config rules to verify compliance with allowed Amazon Elastic Cloud Compute (EC2) instance types and Amazon Simple Storage Service (S3) bucket encryption, and then you will enable AWS Systems Manager to support host management. Next, you will create an AWS CloudFormation stack that includes an Amazon Virtual Private Cloud (VPC), EC2 instances, and an S3 bucket, and then you will create an EventBridge rule that sends an email by using the Amazon Simple Notification Service (SNS) whenever a Systems Manager automation executes. Finally, you will check for compliance, and then you will add a remediation to the Config rules. Note: Once you begin the challenge lab, you will not be able to pause, save, or exit and then return to your challenge lab. Please ensure that you have set aside enough time to complete the challenge lab before you start.
Learning Objectives
In this challenge, you will automate processes by using AWS services. First, you will enable AWS Config rules to verify compliance with allowed Amazon Elastic Cloud Compute (EC2) instance types and Amazon Simple Storage Service (S3) bucket encryption, and then you will enable AWS Systems Manager to support host management. Next, you will create an AWS CloudFormation stack that includes an Amazon Virtual Private Cloud (VPC), EC2 instances, and an S3 bucket, and then you will create an EventBridge rule that sends an email by using the Amazon Simple Notification Service (SNS) whenever a Systems Manager automation executes. Finally, you will check for compliance, and then you will add a remediation to the Config rules. Note: Once you begin the challenge lab, you will not be able to pause, save, or exit and then return to your challenge lab. Please ensure that you have set aside enough time to complete the challenge lab before you start.