search

awslabs / aws-securityhub-multiaccount-scripts

This script automates the process of running the Security Hub multi-account workflow across a group of accounts that are in your control
MIT No Attribution
271 stars 108 forks source link

'arn:aws:securityhub:::pci-aws-/v/3.2.1' #26

Closed martinklie closed 4 years ago

martinklie commented 4 years ago

Can we support the new PCI compliance?

InvalidInputException(u'An error occurred (InvalidInputException) when calling the BatchEnableStandards operation: Invalid StandardsSubscriptionRequest(s): [{"StandardsArn":"arn:aws:securityhub::pci-aws-/v/3.2.1"}]',)

martinklie commented 4 years ago

InvalidInputException(u'An error occurred (InvalidInputException) when calling the BatchEnableStandards operation: Invalid StandardsSubscriptionRequest(s): [{"StandardsArn":"arn:aws:securityhub:::ruleset/pci-dss/v/3.2.1"}]',)

martinklie commented 4 years ago

FYI the below worked butas we pass the variable --enabled_regions it would be prefered if the ARN could use this as a variable in its name

arn:aws:securityhub:us-east-2::standards/pci-dss/v/3.2.1

ryanholland commented 4 years ago

We have updated the script to have support for the PCI standard.