AWS GuardDuty 邀请
AWS GuardDuty invitation
我是否需要在 "monitored" 账户中启用 GuardDuty 才能收到邀请?
我想弄清楚如果服务未启用,受监控帐户的管理员是否能够收到邀请。
加入主账户的会员账户是在账户级别完成的,而不是在地区级别,因此无论会员账户在哪个地区使用服务,都会收到邀请。
无论帐户在哪个区域运行,您都应该认真考虑在所有区域启用 GuardDuty,即使您没有使用某个区域。根据 AWS 文档 here,最佳做法是在所有区域启用 GuardDuty:
It is highly recommended that you enable GuardDuty in all supported AWS regions. This allows GuardDuty to generate findings about unauthorized or unusual activity even in regions that you are not actively using. This also allows GuardDuty to monitor AWS CloudTrail events for global AWS services such as IAM.
If GuardDuty is not enabled in all supported regions, its ability to detect activity that involves global services is reduced.
我是否需要在 "monitored" 账户中启用 GuardDuty 才能收到邀请?
我想弄清楚如果服务未启用,受监控帐户的管理员是否能够收到邀请。
加入主账户的会员账户是在账户级别完成的,而不是在地区级别,因此无论会员账户在哪个地区使用服务,都会收到邀请。
无论帐户在哪个区域运行,您都应该认真考虑在所有区域启用 GuardDuty,即使您没有使用某个区域。根据 AWS 文档 here,最佳做法是在所有区域启用 GuardDuty:
It is highly recommended that you enable GuardDuty in all supported AWS regions. This allows GuardDuty to generate findings about unauthorized or unusual activity even in regions that you are not actively using. This also allows GuardDuty to monitor AWS CloudTrail events for global AWS services such as IAM. If GuardDuty is not enabled in all supported regions, its ability to detect activity that involves global services is reduced.