fms-shield-resource-policy-check - AWS Config

翻訳は機械翻訳により提供されています。提供された翻訳内容と英語版の間で齟齬、不一致または矛盾がある場合、英語版が優先します。

fms-shield-resource-policy-check

Checks whether an Application Load Balancer, Amazon CloudFront distributions, Elastic Load Balancer or Elastic IP has AWS Shield protection. It also checks if they have web ACL associated for Application Load Balancer and Amazon CloudFront distributions.

Identifier: FMS_SHIELD_RESOURCE_POLICY_CHECK

Trigger type: 設定変更

AWS Region: All supported AWS regions except China (Beijing), China (Ningxia), AWS GovCloud (US-East), AWS GovCloud (US-West), Asia Pacific (Osaka) Region

パラメータ:

webACLId
タイプ: 文字列

ウェブ ACL の WebACLId。

resourceTypes
タイプ: 文字列

The resource scope which this config rule will be applied to.

resourceTags (Optional)
タイプ: 文字列

The resource tags that the rule should be associated with (for example, { "tagKey1" : ["tagValue1"], "tagKey2" : ["tagValue2", "tagValue3"] }).

excludeResourceTags (Optional)
タイプ: ブール値

true の場合、resourceTags と一致するリソースを除外します。If false, include all the resources that match the resourceTags.

fmsManagedToken (Optional)
タイプ: 文字列

A token generated by AWS Firewall Manager when creating the rule in your account. AWS Config ignores this parameter when you create this rule.

fmsRemediationEnabled (Optional)
タイプ: ブール値

If true, AWS Firewall Manager will update NON_COMPLIANT resources according to FMS policy. AWS Config ignores this parameter when you create this rule.

AWS CloudFormation テンプレート

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.