Skip to content
Permalink
Branch: master
Find file Copy path
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
39 lines (22 sloc) 1.5 KB

AWS Open Buckets Policy Template

What it does

This Policy Template will check your account for Amazon S3 buckets with public permission.

Input Parameters

This policy has the following input parameters required when launching the policy.

Policy Actions

The following policy actions are taken on any resources found to be out of compliance.

  • Send an email report

Slack Channel Notification Support

The policy includes optional support to send a notification to a slack channel when an anomaly is detected. The policy accepts two optional input parameters to support this capability:

  • Slack Channel Name: This is the slack channel name, e.g. #policy_alerts
  • RightScale Credential for Slack Channel Webhook: This is the name of a RightScale credential in the account that contains the Slack webhook URL.

Required Permissions

This policy requires permissions to access RightScale resources (credentials). Before applying this policy add the following roles to the user applying the policy. The roles should be applied to all Accounts where the policy will run or the Organization. For more information on modifying roles visit the Governance Docs

  • Cloud Management - credential_viewer or admin
  • Cloud Management - Observer

Supported Clouds

  • AWS

Cost

This Policy Template does not launch any instances, and so does not incur any cloud costs.

You can’t perform that action at this time.