Best practice rules for AWS ConfigService
AWS ConfigService is a fully managed service that provides you with a detailed inventory of your AWS resources and their current configurations. This service also records your configuration history and notifies you when your configurations change.
ConfigService Rules allows you to script rules that will automatically checks the configuration of your AWS resources. ConfigService Rules can only check configurations associated with resources recorded in AWS ConfigService.
- AWS Config Rule for App-Tier Encrypted Volumes
Ensure an AWS managed Config rule for encrypted volumes is applied to app tier.
- AWS Config Rule for Web-Tier Encrypted Volumes
Ensure an AWS managed Config rule for encrypted volumes is applied to web tier.
- AWS Custom Rule
Ensure that all evaluation results returned for your AWS Config rules are compliant.