Publicado el por Deja un comentario

AWS Config launches 42 new managed rules

AWS Config announces launch of an additional 42 managed Config rules for various use cases such as security, cost, durability, and operations. You can now search, discover, enable and manage these additional rules directly from AWS Config and govern more use cases for your AWS environment.

With this launch, you can now enable these controls across your account or across your organization. For example, you can evaluate your tagging strategies across Amazon EKS Fargate profiles, Amazon EC2 Network Insight Analyses, AWS Glue Machine learning transforms. Or you can assess your security posture across Amazon Cognito Identity pools, Amazon Lightsail buckets, AWS Amplify apps and more. Additionally, you can leverage Conformance Packs to group these new controls and deploy across an account or across organization, streamlining your multi-account governance.

For the full list of recently released rules, visit the AWS Config developer guide. For description of each rule and the AWS Regions in which it is available, please refer our Config managed rules documentation. To start using Config rules, please refer our documentation.

New Rules Launched:

  1. AMPLIFY_APP_NO_ENVIRONMENT_VARIABLES
  2. AMPLIFY_BRANCH_DESCRIPTION
  3. APIGATEWAY_STAGE_DESCRIPTION
  4. APIGATEWAYV2_STAGE_DESCRIPTION
  5. API_GWV2_STAGE_DEFAULT_ROUTE_DETAILED_METRICS_ENABLED
  6. APIGATEWAY_STAGE_ACCESS_LOGS_ENABLED
  7. APPCONFIG_DEPLOYMENT_STRATEGY_MINIMUM_FINAL_BAKE_TIME
  8. APPCONFIG_DEPLOYMENT_STRATEGY_TAGGED
  9. APPFLOW_FLOW_TRIGGER_TYPE_CHECK
  10. APPMESH_VIRTUAL_NODE_CLOUD_MAP_IP_PREF_CHECK
  11. APPMESH_VIRTUAL_NODE_DNS_IP_PREF_CHECK
  12. APPRUNNER_SERVICE_IP_ADDRESS_TYPE_CHECK
  13. APPRUNNER_SERVICE_MAX_UNHEALTHY_THRESHOLD
  14. APS_RULE_GROUPS_NAMESPACE_TAGGED
  15. AUDITMANAGER_ASSESSMENT_TAGGED
  16. BATCH_MANAGED_COMPUTE_ENV_ALLOCATION_STRATEGY_CHECK
  17. BATCH_MANAGED_SPOT_COMPUTE_ENVIRONMENT_MAX_BID
  18. COGNITO_IDENTITY_POOL_UNAUTHENTICATED_LOGINS
  19. COGNITO_USER_POOL_PASSWORD_POLICY_CHECK
  20. CUSTOMERPROFILES_DOMAIN_TAGGED
  21. DEVICEFARM_PROJECT_TAGGED
  22. DEVICEFARM_TEST_GRID_PROJECT_TAGGED
  23. DMS_REPLICATION_INSTANCE_MULTI_AZ_ENABLED
  24. EC2_LAUNCH_TEMPLATES_EBS_VOLUME_ENCRYPTED
  25. EC2_NETWORK_INSIGHTS_ANALYSIS_TAGGED
  26. EKS_FARGATE_PROFILE_TAGGED
  27. GLUE_ML_TRANSFORM_TAGGED
  28. IOT_SCHEDULED_AUDIT_TAGGED
  29. IOT_PROVISIONING_TEMPLATE_DESCRIPTION
  30. IOT_PROVISIONING_TEMPLATE_JITP
  31. IOT_PROVISIONING_TEMPLATE_TAGGED
  32. KINESIS_VIDEO_STREAM_MINIMUM_DATA_RETENTION
  33. LAMBDA_FUNCTION_DESCRIPTION
  34. LIGHTSAIL_BUCKET_ALLOW_PUBLIC_OVERRIDES_DISABLED
  35. RDS_MYSQL_CLUSTER_COPY_TAGS_TO_SNAPSHOT_CHECK
  36. RDS_PGSQL_CLUSTER_COPY_TAGS_TO_SNAPSHOT_CHECK
  37. ROUTE53_RESOLVER_FIREWALL_DOMAIN_LIST_TAGGED
  38. ROUTE53_RESOLVER_FIREWALL_RULE_GROUP_ASSOCIATION_TAGGED
  39. ROUTE53_RESOLVER_FIREWALL_RULE_GROUP_TAGGED
  40. ROUTE53_RESOLVER_RESOLVER_RULE_TAGGED
  41. RUM_APP_MONITOR_TAGGED
  42. RUM_APP_MONITOR_CLOUDWATCH_LOGS_ENABLED

 

​AWS Config announces launch of an additional 42 managed Config rules for various use cases such as security, cost, durability, and operations. You can now search, discover, enable and manage these additional rules directly from AWS Config and govern more use cases for your AWS environment.
With this launch, you can now enable these controls across your account or across your organization. For example, you can evaluate your tagging strategies across Amazon EKS Fargate profiles, Amazon EC2 Network Insight Analyses, AWS Glue Machine learning transforms. Or you can assess your security posture across Amazon Cognito Identity pools, Amazon Lightsail buckets, AWS Amplify apps and more. Additionally, you can leverage Conformance Packs to group these new controls and deploy across an account or across organization, streamlining your multi-account governance.
For the full list of recently released rules, visit the AWS Config developer guide. For description of each rule and the AWS Regions in which it is available, please refer our Config managed rules documentation. To start using Config rules, please refer our documentation. New Rules Launched:

AMPLIFY_APP_NO_ENVIRONMENT_VARIABLES
AMPLIFY_BRANCH_DESCRIPTION
APIGATEWAY_STAGE_DESCRIPTION
APIGATEWAYV2_STAGE_DESCRIPTION
API_GWV2_STAGE_DEFAULT_ROUTE_DETAILED_METRICS_ENABLED
APIGATEWAY_STAGE_ACCESS_LOGS_ENABLED
APPCONFIG_DEPLOYMENT_STRATEGY_MINIMUM_FINAL_BAKE_TIME
APPCONFIG_DEPLOYMENT_STRATEGY_TAGGED
APPFLOW_FLOW_TRIGGER_TYPE_CHECK
APPMESH_VIRTUAL_NODE_CLOUD_MAP_IP_PREF_CHECK
APPMESH_VIRTUAL_NODE_DNS_IP_PREF_CHECK
APPRUNNER_SERVICE_IP_ADDRESS_TYPE_CHECK
APPRUNNER_SERVICE_MAX_UNHEALTHY_THRESHOLD
APS_RULE_GROUPS_NAMESPACE_TAGGED
AUDITMANAGER_ASSESSMENT_TAGGED
BATCH_MANAGED_COMPUTE_ENV_ALLOCATION_STRATEGY_CHECK
BATCH_MANAGED_SPOT_COMPUTE_ENVIRONMENT_MAX_BID
COGNITO_IDENTITY_POOL_UNAUTHENTICATED_LOGINS
COGNITO_USER_POOL_PASSWORD_POLICY_CHECK
CUSTOMERPROFILES_DOMAIN_TAGGED
DEVICEFARM_PROJECT_TAGGED
DEVICEFARM_TEST_GRID_PROJECT_TAGGED
DMS_REPLICATION_INSTANCE_MULTI_AZ_ENABLED
EC2_LAUNCH_TEMPLATES_EBS_VOLUME_ENCRYPTED
EC2_NETWORK_INSIGHTS_ANALYSIS_TAGGED
EKS_FARGATE_PROFILE_TAGGED
GLUE_ML_TRANSFORM_TAGGED
IOT_SCHEDULED_AUDIT_TAGGED
IOT_PROVISIONING_TEMPLATE_DESCRIPTION
IOT_PROVISIONING_TEMPLATE_JITP
IOT_PROVISIONING_TEMPLATE_TAGGED
KINESIS_VIDEO_STREAM_MINIMUM_DATA_RETENTION
LAMBDA_FUNCTION_DESCRIPTION
LIGHTSAIL_BUCKET_ALLOW_PUBLIC_OVERRIDES_DISABLED
RDS_MYSQL_CLUSTER_COPY_TAGS_TO_SNAPSHOT_CHECK
RDS_PGSQL_CLUSTER_COPY_TAGS_TO_SNAPSHOT_CHECK
ROUTE53_RESOLVER_FIREWALL_DOMAIN_LIST_TAGGED
ROUTE53_RESOLVER_FIREWALL_RULE_GROUP_ASSOCIATION_TAGGED
ROUTE53_RESOLVER_FIREWALL_RULE_GROUP_TAGGED
ROUTE53_RESOLVER_RESOLVER_RULE_TAGGED
RUM_APP_MONITOR_TAGGED
RUM_APP_MONITOR_CLOUDWATCH_LOGS_ENABLED  

Deja una respuesta

Tu dirección de correo electrónico no será publicada. Los campos obligatorios están marcados con *