Options
All
  • Public
  • Public/Protected
  • All
Menu

List of AWS Config rules

Hierarchy

  • AwsConfigRuleSet

Implements

Index

Constructors

Properties

Constructors

Properties

deploymentTargets: DeploymentTargets = ...

Config ruleset deployment target.

To configure AWS Config rules into Root and Infrastructure organizational units, you need to provide below value for this parameter.

example
- deploymentTargets:
organizationalUnits:
- Root
- Infrastructure
rules: ConfigRule[] = []

AWS Config ruleset

Following example will create a custom rule named accelerator-attatch-ec2-instance-profile with remediation and a managed rule named accelerator-iam-user-group-membership-check without remediation

example
rules:
- name: accelerator-attatch-ec2-instance-profile
type: Custom
description: Custom role to remediate ec2 instance profile to EC2 instances
inputParameters:
customRule:
lambda:
sourceFilePath: custom-config-rules/attach-ec2-instance-profile.zip
handler: index.handler
runtime: nodejs14.x
timeout: 3
periodic: true
maximumExecutionFrequency: Six_Hours
configurationChanges: true
triggeringResources:
lookupType: ResourceTypes
lookupKey: ResourceTypes
lookupValue:
- AWS::EC2::Instance
- name: accelerator-iam-user-group-membership-check
complianceResourceTypes:
- AWS::IAM::User
identifier: IAM_USER_GROUP_MEMBERSHIP_CHECK

Generated using TypeDoc