Config Review

It will periodically review whether customer's Amazon Web Service (AWS)
resources are configured based on defined rules.
Based on this review, you will be able to verify and understand
whether AWS environments are operated accordingly to the original plan

Free trial for 1 month
* Please note that "Config Review"
feature is not included for this 1 month free trial

What can be checked ? (example)

It will periodically review AWS resources, such as EC2, ELB and RDS, whether those are correctly configured from fault tolerance, availability, and security point of view.
This will enable system to be configured at certain quality level.

  • Multi-factor authentication that uses a virtual device has been enabled in the root AWS account
  • One or more IAM user has been created
  • One or more IAM group has been created
  • All IAM users are not set inline policy individually
  • CloudTrail by filtered tag is enabled and specifying S3 bucket as the destination
  • Security group that the TCP/22 (SSH) permission rules specifie 0.0.0.0/0 to inbound rules does not exit
  • VPC Flow Logs that filtered by tag is enabled and specifying CloudWatch Log group for log as the destination
  • The latest SSL policiy is set to ELB

Config review features

It will periodically review whether customer's Amazon Web Service (AWS) resources are configured based on defined rules.
Based on this review, you will be able to verify and understand whether AWS environments are operated accordingly to the original plan

Policy set templates which were created using our expertise

We provide policy set templates which covers verious important rules for using AWS.
This templates utilizes our know-hows, based on our experience of handling more than 6,000 AWS projects, so that you will be able to operate AWS environments at the level which Premium Consulting partner to provide operation services.

Flexibility for notification about the review result

The result of the review can be notified based on the outcome. You will be able to change designated notification attention based on whether configuration has been configured correctly or not. Also, you can insert messages to SQS.

Question/request for implementation
TOPへ