AI CloudAdvisor (Beta)

My Presets

You must be logged in to save or view your saved configuration templates

Security Controls

Service Control PoliciesConfig RulesCloudWatch Alarms and Event RulesCloudFormation Guard RulesLogging & Monitoring ConfigurationsBackups & DRAuto Remediation RulesConformance PacksBilling and Cost ManagementS3 Bucket PoliciesSecurity Groups & NACLsIAM PoliciesVPC Endpoint Policies

AWS Services

Guided Walkthroughs

Configuration Packages

Reference Guides

Other

AI CloudAdvisor (Beta)

Configuration Stack
0

My Presets

Security Controls

AWS Services

VPC Security ControlsEC2 Security ControlsIAM Security ControlsS3 Security ControlsRDS Security ControlsOpenSearch/Elasticsearch Security ControlsEFS Security ControlsRoute53 Security ControlsDynamoDB Security ControlsECR Security ControlsEMR SecurityLambda SecurityCloudFormation SecurityCodeX Security ControlsCloudFront SecurityAWS Certificate Manager (ACM) SecurityAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieAWS WAFAWS Secrets ManagerAWS Systems ManagerAWS KMSAWS SSOLoad BalancersRDS Event SubscriptionsAWS Resource Access Manager (RAM)Alexa SkillAmazon API GatewayAWS AppConfigAmazon AppFlowAWS App MeshAWS App RunnerAWS AppSyncApplication Auto ScalingAmazon AthenaAWS BatchAWS Billing ConductorAWS Clean RoomsAWS SNSAWS SQSAWS Service DiscoveryAWS Step FunctionsAWS CloudTrailAWS ConfigAWS CloudWatchAWS CognitoAmazon Connect

Guided Walkthroughs

Configuration Packages

Reference Guides

Other

AWS SNS

A collection of configuration templates for AWS SNS as well as security controls for monitoring and protecting AWS SNS configuration such as Config Rules, CloudWatch Alarms, EventBridge Rules, IAM policies, and more.

SNS
Amazon SNS Topic with SQS Queue Subscription
Add to Stack

This template creates an Amazon SNS topic with two Amazon SQS queue subscriptions. The topic is named 'SampleTopic' and the subscriptions are configured to use the 'sqs' protocol. The endpoints for the subscriptions are obtained using the 'Fn::GetAtt' function to retrieve the ARNs of the 'MyQueue1' and 'MyQueue' queues.

CloudFormation
Sample SNS Subscriptions with SQS and HTTPS Endpoints and Optional Attributes
Add to Stack

This template creates an AWS::SNS::Subscription resource with optional attributes. It creates subscriptions with filter policy, delivery policy, and raw message delivery enabled. The subscriptions are created for the specified endpoints to receive notifications from the specified SNS topic.

CloudFormation
SNS Topic with Email Subscription
Add to Stack

This template creates an AWS::SNS::Subscription resource with the specified endpoint, protocol, and topic ARN. The subscription is created for the specified endpoint to receive notifications from the specified SNS topic.

CloudFormation
Service Control Policy
Prevent Modifications to Specific SNS Topics
Add to Stack

This SCP restricts IAM principals in accounts from making changes to specific SNS topics with the exception of a specific IAM role (This could be a common administrative IAM role created in all accounts in your organization)

CloudFormationTerraformAWS CLI
Config Rule
SNS Encryption with KMS Enabled
Add to Stack

A config rule that checks whether Amazon SNS topic is encrypted with AWS Key Management Service (AWS KMS). The rule is NON_COMPLIANT if the Amazon SNS topic is not encrypted with AWS KMS. The rule is also NON_COMPLIANT when encrypted KMS key is not present in kmsKeyIds input parameter.

CloudFormationTerraformAWS CLI
SNS Topic Message Delivery Notification Enabled
Add to Stack

A Config rule that checks if Amazon Simple Notification Service (SNS) logging is enabled for the delivery status of notification messages sent to a topic for the endpoints. The rule is NON_COMPLIANT if the delivery status notification for messages is not enabled.

CloudFormationTerraformAWS CLI
Filter by source
 
SNS
Service Control Policy
Config Rule