Table of contents

Set up Amazon SNS

If you have an AWS account, you can take advantage of the Amazon Simple Notification Service (SNS) to publish notifications about Workload Security events and deliver them to subscribers.

To set up Amazon SNS:

  1. Create an AWS user.
  2. Create an Amazon SNS topic.
  3. Enable SNS.
  4. Create subscriptions.

Create an AWS user

In order to use Amazon SNS with Workload Security, you need to create an AWS user with the appropriate permissions for SNS. Note the access key and secret key for the user, because you will need that information for step 3.

The AWS user needs the "sns:Publish" permission on all SNS topics to which Workload Security will publish. This is an example of a policy with this permission:

{
   "Version": "2012-10-17",
   "Statement": [
      {
         "Action": [
            "sns:Publish"
         ],
         "Effect": "Allow",
         "Resource": "\*"
      }
   ]
}

If you want to limit publishing rights to a single topic, you can replace "Resource":"\*" with "Resource":"TOPIC ARN".

For more information, see Controlling User Access to Your AWS Account and Special Information for Amazon SNS Policies in the Amazon AWS documentation.

Create an Amazon SNS topic

In AWS, create an SNS topic where the events will be published. For instructions on how to create an Amazon SNS topic, see "Create a Topic" in the Amazon SNS documentation. Note the SNS Topic ARN because you will need this information in step 3.

Enable SNS

  1. In the Workload Security console, go to Administration > System Settings > Event Forwarding.
  2. In the Amazon SNS section, select Publish Events to Amazon Simple Notification Service.
  3. Enter this information:
    • Access Key: The access key of the AWS user you created in step 1.
    • Secret Key: The secret key of the AWS user you created in step 1.
    • SNS Topic ARN: The SNS Topic ARN to which events will be sent. This is the ARN that you noted in step 2.
  4. Select the types of events that you want to forward to SNS.
    Selecting the events automatically generates a JSON SNS configuration.
  5. Optionally, you can also click Edit JSON SNS configuration to edit the JSON SNS configuration directly if you want to filter the events in greater detail and configure the forwarding instructions for each filter. For details on the configuration language, see JSON SNS configuration.
    Note that if you edit the JSON, the event configurations become unavailable. If you want to select or deselect any of the event settings, you can click Revert to basic SNS configuration, but any customizations you have made to the JSON SNS configuration will be discarded.
  6. Click Save.

Create subscriptions

Now that SNS is enabled and events are being published to the topic, go to the Amazon SNS console and subscribe to the topic to access the events. There are several ways that you can subscribe to events, including email, SMS, and Lambda endpoints.

Note that Lambda is not available in all AWS regions.