terraform.aws-baseline-infra/modules/security_identity_compliance/other-default-settings/main.tf

24 lines
770 B
Terraform
Raw Normal View History

resource "aws_s3_account_public_access_block" "default-s3-public-access-settings" {
block_public_acls = true
block_public_policy = true
ignore_public_acls = true
restrict_public_buckets = true
lifecycle { ignore_changes = all }
}
resource "aws_ebs_encryption_by_default" "default-ebs-encryption-setting" {
enabled = true
lifecycle { ignore_changes = all }
}
resource "aws_iam_account_password_policy" "password-policy1" {
minimum_password_length = 14
require_lowercase_characters = true
require_numbers = true
require_uppercase_characters = true
require_symbols = true
allow_users_to_change_password = true
max_password_age = 90
password_reuse_prevention = 24
hard_expiry = true
}