-
Notifications
You must be signed in to change notification settings - Fork 843
/
Security-Best-Practices-for-EFS.yaml
43 lines (42 loc) · 1.33 KB
/
Security-Best-Practices-for-EFS.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
##################################################################################
#
# Conformance Pack:
# Operational Best Practices for EFS
#
#
##################################################################################
Resources:
EfsAccessPointEnforceRootDirectory:
Properties:
ConfigRuleName: efs-access-point-enforce-root-directory
Scope:
ComplianceResourceTypes:
- AWS::EFS::AccessPoint
Source:
Owner: AWS
SourceIdentifier: EFS_ACCESS_POINT_ENFORCE_ROOT_DIRECTORY
Type: AWS::Config::ConfigRule
EfsAccessPointEnforceUserIdentity:
Properties:
ConfigRuleName: efs-access-point-enforce-user-identity
Scope:
ComplianceResourceTypes:
- AWS::EFS::AccessPoint
Source:
Owner: AWS
SourceIdentifier: EFS_ACCESS_POINT_ENFORCE_USER_IDENTITY
Type: AWS::Config::ConfigRule
EfsEncryptedCheck:
Properties:
ConfigRuleName: efs-encrypted-check
Source:
Owner: AWS
SourceIdentifier: EFS_ENCRYPTED_CHECK
Type: AWS::Config::ConfigRule
EfsInBackupPlan:
Properties:
ConfigRuleName: efs-in-backup-plan
Source:
Owner: AWS
SourceIdentifier: EFS_IN_BACKUP_PLAN
Type: AWS::Config::ConfigRule