Stax is releasing a new feature to support real-time data on the Rules page to provide all customers with real-time compliance data. With real-time data on the Rules page, you will be able to see near real-time compliance status which reflects the constantly evolving state of an AWS environment.
For Stax tenancies with Real-Time Rules enabled, evaluation times for compliance alerts and information is decreased from 8 hours to 15 minutes.
Customers enrolled in the Real-time data on the Rules page preview program will receive first access to the new compliance functionality. See Join the preview to enrol.
What to expect
Changes in compliance findings and reporting
Once Stax has enabled your tenancy for the preview program, you may initially notice a greater number of changes in your compliance results. This is because Stax is now evaluating your AWS environment's compliance much more frequently which means changes in resources compliance will be displayed sooner. In addition, pilot users will experience improvements in how some rules are evaluated. See Rule Improvements below.
Changes to Views functionality
Filtering by a View segment on the Rules page or Rule Details pages will no longer be available. A future release will include new filtering and grouping functionality for Rules.
Changes to compliance notifications configured with a Segment
While the preview program is in progress, compliance notifications will only be configurable to All Views as the View functionality is disabled. This means preview users will not have the ability to configure a compliance notification based on a segment. In addition, any existing compliance notifications will be automatically converted to use All Views as the segment for applicable users. This change will not impact Cost and Budget notifications configured on a segment.
Impacted Notifications:
- Daily Compliance Report
- Monthly Compliance Report
- Real-Time Rule Alerts
- Rule-level Noncompliance Alerts
- Resource-level Noncompliance Alerts
- New Rule Releases
If you do not wish for your notifications to be automatically converted to use All Views, you can disable the notification by updating your personal or organization Subscription Preferences. You can edit or delete existing notifications by following the guidance in Manage Notifications.
Rule Improvements
CloudTrail trails should be actively delivering events
Currently, for multi-region CloudTrail trails, the Compliance module reports a separate resource per active AWS Region, meaning you could see hundreds of records for a single multi-region CloudTrail trail. As part of the preview, you will see multi region CloudTrail instances reported as a single resource.
Join the preview
To enrol in the Real-time data on the Rules page preview program, contact your Customer Success Manager or raise a Support Case.