Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easier for AWS Security Hub customers to resolve common security findings and to improve their security posture in AWS.
When executing ASR-SC_2.0.0_SNS.2 the automation returns 'Invalid document: ASR-EnableDeliveryLoggingForSNSTopic'
When executing ASR-ASFBP_SNS.2 the automation succeeds as it executes the document 'ASR-EnableDeliveryStatusLoggingForSNSTopic' which is the correct name for the deployed remediation document
The automation document for ASR-SC_2.0.0_SNS.2 has an incorrect name for the remediation document,
To Reproduce
Execute ASR-SC_2.0.0_SNS.2
Expected behavior
Both SC and ASFBP SNS.2 should execute the same remediation document and the automation should execute successfully
Please complete the following information about the solution:
[ ] Version: 2.0.1
[ ] Region: All
[ ] Was the solution modified from the version published on this repository? No
Describe the bug
When executing ASR-SC_2.0.0_SNS.2 the automation returns 'Invalid document: ASR-EnableDeliveryLoggingForSNSTopic' When executing ASR-ASFBP_SNS.2 the automation succeeds as it executes the document 'ASR-EnableDeliveryStatusLoggingForSNSTopic' which is the correct name for the deployed remediation document
The automation document for ASR-SC_2.0.0_SNS.2 has an incorrect name for the remediation document,
To Reproduce
Execute ASR-SC_2.0.0_SNS.2
Expected behavior
Both SC and ASFBP SNS.2 should execute the same remediation document and the automation should execute successfully
Please complete the following information about the solution:
Additional context https://github.com/aws-solutions/automated-security-response-on-aws/blob/main/source/playbooks/AFSBP/ssmdocs/AFSBP_SNS.2.yaml)
https://github.com/aws-solutions/automated-security-response-on-aws/blob/main/source/playbooks/SC/ssmdocs/SC_SNS.2.ts