Skip to content

Commit

Permalink
Use correct org root id
Browse files Browse the repository at this point in the history
  • Loading branch information
Johan Steenhoven authored and Johan Steenhoven committed Dec 17, 2024
1 parent 3f1d890 commit 5afe357
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 2 deletions.
3 changes: 2 additions & 1 deletion UPGRADING.md
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,8 @@ This document captures required refactoring on your part when upgrading to a mod

### Behaviour

This version changes the detault [Security Hub configuration to Central](https://docs.aws.amazon.com/securityhub/latest/userguide/central-configuration-intro.html). You can change this behaviour by setting `var.aws_security_hub.organization_configuration_type` to `LOCAL`.
> [!IMPORTANT]
> **This version changes the [Security Hub configuration to Central](https://docs.aws.amazon.com/securityhub/latest/userguide/central-configuration-intro.html).**
This version enables Security Hub Findings Aggregation for all regions. You can change this behauviour by setting `var.aws_security_hub.aggregator_linking_mode` to `ALL_REGIONS_EXCEPT_SPECIFIED` or `SPECIFIED_REGIONS` and providing the list of regions via `var.aws_security_hub.aggregator_specified_regions`

Expand Down
2 changes: 1 addition & 1 deletion security_hub.tf
Original file line number Diff line number Diff line change
Expand Up @@ -132,6 +132,6 @@ resource "aws_securityhub_configuration_policy" "default" {
}

resource "aws_securityhub_configuration_policy_association" "root" {
target_id = data.aws_organizations_organization.default.id
target_id = data.aws_organizations_organization.default.roots[0].id
policy_id = aws_securityhub_configuration_policy.default.id
}

0 comments on commit 5afe357

Please sign in to comment.