You must be logged in to view saved presets
fms-webacl-resource-policy-check
A config rule that checks whether the web ACL is associated with an Application Load Balancer or Amazon CloudFront distributions. When AWS Firewall Manager creates this rule, the FMS policy owner specifies the WebACLId in the FMS policy and can optionally enable remediation.
This config rule supports the following parameters:
- webACLId
- Required: Yes
- Type: String
- Description:The WebACLId of the web ACL.
- resourceTags
- Required: No
- Type: String
- Description:The resource tags (ApplicationLoadBalancer, ApiGatewayStage and CloudFront distributions) that the rule should be associated with. (for example, { "tagKey1" : ["tagValue1"], "tagKey2" : ["tagValue2", "tagValue3"] })
- excludeResourceTags
- Required: No
- Type: boolean
- Description:If true, exclude resources that match resourceTags.
- fmsManagedToken
- Required: No
- Type: String
- Description:A token generated by AWS Firewall Manager when creating the rule in customer account. AWS Config ignores this parameter when customer creates this rule.
- fmsRemediationEnabled
- Required: No
- Type: boolean
- Description:If true, AWS Firewall Manager will update non-compliant resources according to FMS policy. AWS Config ignores this parameter when customer creates this rule.
CloudFormation Template
© 2024 asecurecloud. All rights reserved.