Automated deployment - Security Automations for AWS WAF

Automated deployment

Before you launch the AWS CloudFormation template, review the architectural and configuration considerations discussed in this guide. Follow the step-by-step instructions in this section to configure and deploy the Security Automations for AWS WAF solution into your account.

Time to deploy: Approximately 15 minutes.


This solution is designed to work with web applications deployed with Amazon CloudFront or an Application Load Balancer. If you don't already have one of these resources configured, complete the applicable task before you launch this solution.

Configure a CloudFront distribution

Complete the following steps to configure a CloudFront distribution to distribute static and dynamic content of your web application. Refer to the Amazon CloudFront Developer Guide for detailed instructions.

  1. Create a CloudFront web application distribution. Refer to Creating or Updating a Web Distribution Using the CloudFront Console.

  2. Configure static and dynamic origins. Refer to Using Amazon S3 Origins and Custom Origins for Web Distributions.

  3. Specify your distribution’s behavior. Refer to Values that You Specify When You Create or Update a Web Distribution.


If you choose CLOUDFRONT as your endpoint, you must create your WAFV2 resources in the US East (N. Virginia) Region, us-east-1.

Configure an Application Load Balancer

To configure an Application Load Balancer to distribute incoming traffic to your web application, refer to the Create an Application Load Balancer in the Elastic Load Balancing documentation.