efs-resources-protected-by-backup-plan - AWS Config

efs-resources-protected-by-backup-plan

Checks if Amazon Elastic File System (Amazon EFS) File Systems are protected by a backup plan. The rule is NON_COMPLIANT if the EFS File System is not covered by a backup plan.

Identifier: EFS_RESOURCES_PROTECTED_BY_BACKUP_PLAN

Resource Types: AWS::EFS::FileSystem

Trigger type: Periodic

AWS Region: All supported AWS regions except US ISO West, China (Beijing), Asia Pacific (Jakarta), US ISO East, Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Malaysia), US ISOB East, Asia Pacific (Melbourne), Israel (Tel Aviv), Canada West (Calgary), Europe (Spain), China (Ningxia), Europe (Zurich) Region

Parameters:

resourceTags (Optional)
Type: String

Tags for EFS File Systems for the rule to check, in JSON format {"tagkey" : "tagValue"}.

resourceId (Optional)
Type: String

ID of the EFS File System for the rule to check.

crossRegionList (Optional)
Type: String

Comma-separated list of destination regions for the cross-region backup copy to be kept

crossAccountList (Optional)
Type: String

Comma-separated list of destination accounts for cross-account backup copy to be kept

maxRetentionDays (Optional)
Type: int

The maximum retention period in days for the Backup Vault Lock

minRetentionDays (Optional)
Type: int

The minimum retention period in days for the Backup Vault Lock

backupVaultLockCheck (Optional)
Type: String

Accepted values: 'True' or 'False'. Enter 'True' for the rule to check if the resource is backed up in a locked vault

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.