A Config rule that checks whether Amazon GuardDuty is enabled in your AWS account and region. If you provide an AWS account for centralization, the rule evaluates the Amazon GuardDuty results in the centralized account. The rule is compliant when Amazon GuardDuty is enabled.

This config rule supports the following parameters:

  • CentralMonitoringAccount
    • Required: No
    • Type: String
    • Description:Comma separated list of AWS Accounts (12-digit) where Amazon GuardDuty results are allowed to be centralized.


Source *

CloudFormation Template

Share Template