DAY2™ Compliance Bot Prerequisites : Customer Support Portal

List of AWS Services and permissions required by DAY2™ compliance bot

AWS Services	Permissions
AWS Config	config:PutConfigurationRecorder config:PutDeliveryChannel config:StartConfigurationRecorder config:PutConfigRule config:DeleteConfigRule config:DeleteConfigurationRecorder config:DeleteDeliveryChannel config:StopConfigurationRecorder config:DescribeConfigurationRecorderStatus config:DescribeConfigurationRecorders config:DescribeDeliveryChannelStatus config:DescribeDeliveryChannels config:DescribeConfigRules
IAM Policy	AWS_ConfigRole - AWS Managed Policy AWSConfigBucketPolicy - Allow AWS Config to write data to S3 bucket

AWS Services

Permissions

AWS Config

config:PutConfigurationRecorder

config:PutDeliveryChannel

config:StartConfigurationRecorder

config:PutConfigRule

config:DeleteConfigRule

config:DeleteConfigurationRecorder

config:DeleteDeliveryChannel

config:StopConfigurationRecorder

config:DescribeConfigurationRecorderStatus

config:DescribeConfigurationRecorders

config:DescribeDeliveryChannelStatus

config:DescribeDeliveryChannels

config:DescribeConfigRules

IAM Policy

AWS_ConfigRole - AWS Managed Policy

AWSConfigBucketPolicy - Allow AWS Config to write data to S3 bucket

DAY2™ Compliance Bot Prerequisites Print