An example of how to create the necessary AWS resources for integrating with Lacework for configuration compliance using the AWS CDK.
To build this app, you need to be in this example's root folder. Then run the following:
npm install -g aws-cdk
npm install
npm run build
This will install the AWS CDK, then this example's dependencies, and then build your TypeScript files and your CloudFormation template.
In order to deploy this Stack, you'll need to create the following parameters in the AWS Systems Manager -> Parameter Store:
Name | Type | Description | Required |
---|---|---|---|
/lacework/EXTERNAL_ID |
String | A unique string used as an External ID for the Lacework IAM Role | Y |
/lacework/LW_ACCOUNT |
String | Lacework account/organization domain (i.e. xxxxx .lacework.net) |
Y |
/lacework/LW_SUBACCOUNT |
String | Lacework sub-account domain (i.e. xxxxx .lacework.net) |
N |
/lacework/LW_API_KEY |
SecureString | Lacework API Access Key | Y |
/lacework/LW_API_SECRET |
SecureString | Lacework API Access Secret | Y |
Run cdk deploy
. This will deploy / redeploy your Stack to your AWS Account.
This will also deploy a Lambda function to notify a Lacework account when the integration has been completed.