Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

README and CHANGELOG update #268

Merged
merged 1 commit into from
Sep 19, 2024
Merged

README and CHANGELOG update #268

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 35 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,10 @@
## Table of Contents<!-- omit in toc -->

- [Introduction](#introduction)
- [2024-09-18](#2024-09-18)
- [2024-08-22](#2024-08-22)
- [2024-07-17](#2024-07-17)
- [2024-06-24](#2024-06-24)
- [2024-05-03](#2024-05-03)
- [2024-04-15](#2024-04-15)
- [2024-02-12](#2024-02-12)
Expand Down Expand Up @@ -53,6 +57,37 @@
All notable changes to this project will be documented in this file.

---
## 2024-09-18

### Added<!-- omit in toc -->

- Added [Security Lake Organization](aws_sra_examples/solutions/security_lake/security_lake_org) solution to configure Security Lake in AWS Organizations.

### Changed<!-- omit in toc -->

- Updated [Inspector](https://github.com/aws-samples/aws-security-reference-architecture-examples/tree/main/aws_sra_examples/solutions/inspector/inspector_org) solution to allow creation of AWSServiceRoleForAmazonInspector2Agentless SLR.
- Updated documentation for [EC2 Default EBS Encryption](aws_sra_examples/solutions/ec2/ec2_default_ebs_encryption) solution.

## 2024-08-22

### Added<!-- omit in toc -->

- Added [Patch Manager](aws_sra_examples/solutions/patch_mgmt/patch_mgmt_org) solution to streamline the patch management process across multiple AWS accounts and regions in AWS Organizations.

## 2024-07-17

### Fixed<!-- omit in toc -->

- Fixed [Terraform edition](aws_sra_examples/terraform) Workspace creation on suspended accounts.
- Fixed [Firewall Manager](https://github.com/aws-samples/aws-security-reference-architecture-examples/tree/main/aws_sra_examples/solutions/firewall_manager/firewall_manager_org) solution deployment issue (invalid operation error).
- Fixed [GuardDuty terraform](aws_sra_examples/terraform/solutions/guard_duty) module installation failure.

## 2024-06-24

### Changed<!-- omit in toc -->

- Updated [GuardDuty Organization](aws_sra_examples/solutions/guardduty/guardduty_org) solution to support Opt-in regions.

## 2024-05-03

- Updated [GuardDuty Organization](aws_sra_examples/solutions/guardduty/guardduty_org) solution to add Runtime Monitoring protection.
Expand Down
4 changes: 3 additions & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -149,12 +149,14 @@ Please follow the instructions for SRA Terraform deployments in the [SRA Terrafo
| [EC2 Default EBS Encryption](aws_sra_examples/solutions/ec2/ec2_default_ebs_encryption) | Configures the EC2 default EBS encryption to use the default KMS key within all provided regions. | | |
| [Firewall Manager](aws_sra_examples/solutions/firewall_manager/firewall_manager_org) | Demonstrates configuring a security group policy and WAF policies for all accounts within an organization. | | |
| [GuardDuty](aws_sra_examples/solutions/guardduty/guardduty_org) | Configures GuardDuty within a delegated admin account for all accounts within an organization. | | |
| [IAM Access Analyzer](aws_sra_examples/solutions/iam/iam_access_analyzer) | Configures an organization analyzer within a delegated admin account and account level analyzer within each account. | | [Common Register Delegated Administrator](aws_sra_examples/solutions/common/common_register_delegated_administrator)</li></ul> |
| [IAM Access Analyzer](aws_sra_examples/solutions/iam/iam_access_analyzer) | Configures an organization analyzer within a delegated admin account and account level analyzer within each account. | | <ul><li>[Common Register Delegated Administrator](aws_sra_examples/solutions/common/common_register_delegated_administrator)</li></ul> |
| [IAM Account Password Policy](aws_sra_examples/solutions/iam/iam_password_policy) | Sets the account password policy for users to align with common compliance standards. | | |
| [Inspector](aws_sra_examples/solutions/inspector/inspector_org) | Configure Inspector within a delegated admin account for all accounts and governed regions within the organization. | | |
| [Macie](aws_sra_examples/solutions/macie/macie_org) | Configures Macie within a delegated admin account for all accounts within the organization. | | |
| [Patch Manager](aws_sra_examples/solutions/patch_mgmt/patch_mgmt_org) | Configures Systems Manager Patch Manager functionality for accounts and governed regions within the organization. | |
| [S3 Block Account Public Access](aws_sra_examples/solutions/s3/s3_block_account_public_access) | Configures the account-level S3 BPA settings for all accounts within the organization. | Configures S3 BPA settings on buckets created by Control Tower only. | <ul><li>AWS Control Tower</li></ul> |
| [Security Hub](aws_sra_examples/solutions/securityhub/securityhub_org) | Configures Security Hub within a delegated admin account for all accounts and governed regions within the organization. | | <ul><li>AWS Config in all Org Accounts</li><li>[Config Management Account](aws_sra_examples/solutions/config/config_management_account) (_if using AWS Control Tower_)</li></ul> |
| [Security Lake](aws_sra_examples/solutions/security_lake/security_lake_org) | Configures Security Lake within a delegated admin account for accounts and governed regions within the organization. | |
| [Shield Advanced](aws_sra_examples/solutions/shield_advanced/shield_advanced) | Enables and configures AWS Shield Advanced for some or all the existing and future AWS Organization accounts | | |

## Utils
Expand Down
Loading