ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Creating SNS Topic for AWS Securlet configuration

book

Article ID: 172383

calendar_today

Updated On:

Products

CASB Security Standard CASB Security Premium CASB Security Advanced CASB Audit CASB Gateway CASB Gateway Advanced Data Loss Prevention Cloud Package

Issue/Introduction

This describes how to configure an SNS topic in the AWS Console.

Resolution

  • Go to the SNS Dashboard in the region where the S3 bucket for CloudTrail activities is
located.
  • Click Create to create a new SNS Topic in the region.
Note: If you don't know the region of your S3 bucket, you can find it on the S3 Dashboard. The Region is shown in the third column.
  • In SNS Dashboard > Topics, click Create New Topic.
  • Provide a topic name of your choice, then click Create Topic.
  • On the SNS Dashboard, click Topic Details , then click Other Topic Actions > Edit Topic Policy.
  • After selecting to edit the topic you must add the following snippet in the statements array of the existing topic policy.

           { "Sid": "example-statement-ID", "Effect": "Allow", "Principal": { "AWS": "*" }, "Action": "SNS:Publish", "Resource": " ", "Condition": { "ArnLike": { "aws:SourceArn": "arn:aws:s3:*:*:*" } } } 

                 The two things you need to make sure are done are:
                   1. Make sure that your topic ARN is within the quotations after "Resource": 
                   2. Place the snippet above after the } that is highlighted in the screenshot attached.

Attachments

2018-08-28 17_26_26-AWS SNS.png get_app