By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSIAM PoliciesVPC Endpoint PoliciesAmazon ECRRDS Event Subscriptions

By Service Protected

Configuration Packages

Strategy Guides

Other

By Service Protected

By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSIAM PoliciesVPC Endpoint PoliciesAmazon ECRRDS Event Subscriptions

Configuration Packages

Strategy Guides

Other

Amazon GuardDuty

GuardDuty Member Account: Accept Invitation from Master Account

Configuration to enable Amazon GuardDuty as a member account and accept an invitation from a master GuardDuty account

Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts, workloads, and data stored in Amazon S3.
AWS Documentation
Items
2
Size
0.4 KB
Missing Parameters
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
  GuardDuty:
    Type: "AWS::GuardDuty::Detector"
    Properties:
      Enable: true
      DataSources:
        S3Logs:
          Enable: true
  GuardDutyMaster:
    Type: "AWS::GuardDuty::Master"
    Properties:
      DetectorId:
        Ref: "GuardDuty"
      MasterId: ""
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Customize Template

S3 Protection

Detector Settings

GuardDuty Member Configuration

* Required field
Enable GuardDuty with Notifications and Compliance Checks
A configuration package to enable Amazon GuardDuty in an AWS account as well as email notifications for GuardDuty findings (using a CloudWatch Event Rule), and an AWS Config Rule to verify that GuardDuty is continuously enabled
Configuration Package
AWS Threat Detection Services
A configuration package to enable AWS threat detection services: Amazon GuardDuty, Amazon Inspector, and AWS Security Hub. As well as configuration to enable email notifications and prerequsitie services
Configuration Package
Enable GuardDuty with Notifications and Compliance Checks
A configuration package to enable Amazon GuardDuty in an AWS account as well as email notifications for GuardDuty findings (using a CloudWatch Event Rule), and an AWS Config Rule to verify that GuardDuty is continuously enabled
Configuration Package
AWS Threat Detection Services
A configuration package to enable AWS threat detection services: Amazon GuardDuty, Amazon Inspector, and AWS Security Hub. As well as configuration to enable email notifications and prerequsitie services
Configuration Package