ADVANCED (MANUAL) DEPLOYMENT - AUTOMATE READ ONLY

If Security Hub is not already enabled, activate it.
Ensure that the Consolidated Controls option is turned on.
If using an organizational setup, centrally enable Security Hub using the management account along with a delegated AWS account.

Run the following AWS CLI or Cloud Shell command:

aws securityhub create-action-target --name Send_To_6pillars --description "Send Messages to 6pillars" --id SendTo6pillars

Ensure that AWS Config is enabled in the account.
If you are using a central configuration and Security Hub is already enabled, you can skip this step.

Navigate to Manage Accounts
- Go to the Manage Accounts section.
Deploy to AWS Account
- Click on the Deploy to AWS ACCOUNT tab.
Select Deployment Method
- Choose Manual Deployment as the deployment method.
- Click the PREREQUISITES button.

Enter Account Details
- In Step 4, add your AWS Account ID.
- Copy the generated External ID.
Launch Stack
- Click the Quick Launch URL and ensure you are logged into the correct AWS account and region.
- Deploy the stack by providing the External ID.

Return to 6pillars App
- Once the deployment is complete, navigate back to the 6pillars app and close the modal.
Select Product Version
- Scroll down to the section above and select AUTOMATE as the product version.
Configure Deployment
- Choose a unique name for this deployment.
- Enter the AWS Account ID where you installed the stack.
- Provide the External ID used in your stack deployment.
Retrieve SNS Topic ARN
- Obtain the SNS Topic ARN from the installed stack’s output section.
Select Deployment Region
- Choose the AWS region where you deployed the stack.
Deploy and Review
- Click Deploy.
- You will be redirected to the Review and Fix page.
- It may take 15 minutes to pull all findings.
- If your Security Hub is relatively new, it may take up to 24 hours.

Knowledge base