Why did the DeliveryFrequency of my AWS Config configuration snapshot change?

2 minute read

The deliveryFrequency of my AWS Config configuration snapshot changed, and there are PutDeliveryChannel events logged in AWS CloudTrail. However, I didn't change the AWS Config delivery channel. What caused this change?

Resolution

The frequency that AWS Config delivers configuration snapshots is controlled by:

The deliveryFrequency parameter in the PutDeliveryChannel API using the AWS Command Line Interface (AWS CLI).
The MaximumExecutionFrequency parameter in the PutConfigRule API set with creating or changing AWS Config periodic rules.

Note: If you receive errors when running AWS CLI commands, make sure that you’re using the most recent version of the AWS CLI.

You might see PutDeliveryChannel events logged in CloudTrail if:

The deliveryFrequency parameter isn't configured for the delivery channel.
The value of the MaximumExecutionFrequency parameter is less than the deliveryFrequency value set on the delivery channel.

If no value for the deliveryFrequency is set, then AWS Config calls the PutDeliveryChannel API to update the MaximumExecutionFrequency value for the periodic rule.

You can view the deliveryFrequency using the DescribeDeliveryChannnels command similar to the following:

$ aws configservice describe-delivery-channels --region your-region

{
    "DeliveryChannels": [
        {
            "configSnapshotDeliveryProperties": {
                "deliveryFrequency": "Twelve_Hours"
            }, 
            "name": "default", 
            "s3BucketName": "config-bucket-123456789012-your-region"
        }
    ]
}

You can view the PutDeliveryChannel API using AWS CloudTrail similar to the following:

"eventSource": "config.amazonaws.com",
    "eventName": "PutDeliveryChannel",
    "awsRegion": "your-region",
    "sourceIPAddress": "192.0.2.0",
    "userAgent": "console.amazonaws.com",
    "requestParameters": {
        "deliveryChannel": {
            "name": "default",
            "configSnapshotDeliveryProperties": {
                "deliveryFrequency": "Twelve_Hours"
            },
            "s3BucketName": "config-bucket-123456789012-your-region"
        }
    },

Related information

How can I recreate an AWS Config delivery channel?

Topics

Management & Governance

Relevant content

How to configure "tags on creation" for the AWS Config logs written by AWS Control Tower
Andre
asked 7 months ago
Recording frequency AWS config
rePost-User-7704228
asked 8 days ago
AWS config and Configuration change notifications
Draenoel
asked 2 years ago
There is a delay for AWS Config Log to capture the configuration Changes
siying
asked a year ago
AWS Config stops showing and notifying Configuration Change events
aledmb
asked 2 years ago
Why is my AWS Config required-tags rule stuck in the "Evaluating" state?
AWS OFFICIALUpdated 14 days ago
How can I reduce the frequency of automated snapshots in Amazon Redshift?
AWS OFFICIALUpdated 3 months ago
How can I understand AWS Config billing by retrieving the number of configuration items recorded per month?
AWS OFFICIALUpdated 2 years ago
Why is my AWS Config data not getting collected by the aggregator for my AWS account or AWS Organizations account?
AWS OFFICIALUpdated 3 years ago
Why do I get an error "The snapshot is currently in use by AMI" when I try to delete an EBS snapshot, even though there is no AMI on the account?
EXPERT
dnyanesh-db
published 4 months ago