Learn the Tools for Governing Accounts

Lab Steps

Logging in to the Amazon Web Services Console
Setting Up AWS Config
Sending Email Notifications With AWS SNS
Make An AWS CloudTrail
Config Timelines
Inspect Timeline Changes
Pull An IAM Report
Validate AWS Lab

The hands-on lab is part of these learning paths

AWS Advanced Networking – Specialty Certification Preparation
course-steps 20 certification 2 lab-steps 8 quiz-steps 4
AWS Governance & Compliance
course-steps 5 certification 1 lab-steps 2 quiz-steps 3

Ready for the real environment experience?

Time Limit1h
star star star star star-half


Do you know what is going on within your AWS account? As deployments become increasingly complex and businesses allow developers more freedom to work with the AWS Cloud, understanding what users are doing becomes even more important.

Governance on AWS is the practice of using AWS tools to ensure that the way AWS is used meets strategic goals for a company. More concretely, this usually refers to a set of practices and techniques to monitor usage of AWS APIs and services. In this Lab, we will review methods for monitoring how developers use AWS.

Learn about the basic techniques and technologies for governance of enterprise AWS accounts. This Lab covers how to use AWS Config Rules, IAM monitoring techniques, AWS CloudTrails, and core reporting tools.

You will set up AWS Config to monitor changes to resources within an AWS account, subscribe to updates on these resources via email, create an audit trail of AWS API calls using AWS CloudTrail, learn how to read an AWS Config Resource Change Timeline, and pull an AWS IAM report for an account.


Do you have questions about this Lab? Contact our cloud experts by sending an email to support@cloudacademy.com.


January 10th, 2019 - Added a validation Lab Step to check the work you perform in the Lab

September 12th, 2018 - Updated instructions, screenshots, and permissions to match the new service workflows.

About the Author


Nothing gets me more excited than the AWS Cloud platform! Teaching cloud skills has become a passion of mine. I have been a software and AWS cloud consultant for several years. I hold all 5 possible AWS Certifications: Developer Associate, SysOps Administrator Associate, Solutions Architect Associate, Solutions Architect Professional, and DevOps Engineer Professional. I live in Austin, Texas, USA, and work as development lead at my consulting firm, Tuple Labs.