How to set up Amazon Macie?

How to set up Amazon Macie?

May 15, 2020 / Nirav Shah

In our previous blog, we saw an overview and knew What is Amazon Macie? Now we will see how you can setup this service and protect your confidential information.

Setting Up Amazon Macie

• When you sign up for AWS, your AWS account is automatically signed up for all services in AWS, including Amazon Macie.
• Before you can get started with Macie, you must enable Macie.

Prerequisites

• The IAM identity (user, role, group) that you use to enable Macie must have the required permissions. To grant the required permissions, attach the AmazonMacieFullAccess managed policy to this identity.

To enable Amazon Macie

• Open the Macie in your AWS Console
• Choose Get started
• Choose Enable Macie
• You can disable Macie at any time to stop it from processing and analyzing CloudTrail events

Integrate Amazon S3 with Macie

• To classify and protect your data, Macie analyzes and processes information from CloudTrail and Amazon S3. Enabling CloudTrail in your account is required to enable Macie. Integrating S3 with Macie is not required. However, we strongly recommend that you integrate with Amazon S3 as part of setting up Macie. For more information about how Macie classifies your data
• When you integrate with Amazon S3, Macie creates a trail and a bucket to store the logs about the Amazon S3 object-level API activity (data events) that it will analyze, along with other CloudTrail logs that it processes.

To integrate with Amazon S3

• Step-1: Log in to AWS with the credentials of the account that is serving as your Macie master account.
• Step-2: Open the Macie console and choose Integrations from the navigation pane.
• Step-3: Choose S3 Resources and choose Select next to the account
• Step-4: On the Integrate S3 resources with Macie page, choose Add. Select up to 250 Amazon S3 resources from the current AWS Region and then
• Step-5: choose Add
• Step-6:
  • For Classification of existing objects, keep the default setting, Full. The one-time classification method is applied only once to all of the existing objects in the selected S3 buckets.
  • Macie displays the following information for each selected bucket:
    • Total objects – Total number of objects.
    • Processed estimate – Total size of the data that Macie will classify.
    • Cost estimate – Cost estimate for classifying all of the objects.
  • Macie also displays the following totals across all selected buckets:
    • Total size – Total size of the data.
    • Total number of objects – Total number of objects.
    • Processed estimate – Total size of the data that Macie will classify.
    • Total cost estimate – Cost estimate for classifying all of the objects.
  • The cost estimate for each bucket is based on its processed estimate value. The total cost estimates are provided only for S3 buckets, not for prefixes. For more information,
  • The one-time classification cost estimates are only calculated per S3 bucket, not bucket prefixes. If you select a bucket prefix, the cost estimate for the entire S3 bucket is included in the total cost estimate. If you select multiple prefixes of the same S3 bucket, the cost estimate for the entire S3 bucket is included only once in the total cost estimate.
• Step-7: When you have finished your selections, choose Review.
• Step-8: When you have finished reviewing your selections, choose Start classification.