xpk/terraform.aws-baseline-infra
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
efa01270a0
terraform.aws-baseline-infra/modules/security_identity_compliance/aws_config/README.md
xpk 007bfc1a95
DOC: updated readme
2022-09-05 11:31:08 +08:00

1.1 KiB
Raw Blame History

Overview

This module performs the following tasks:

  • Enable AWS config in all regions
  • Deploy CIS1.4 level 1 conformance pack
  • Set Config retention period
  • Setup Config aggregator, aggregate Config in all regions into primary region
  • Create s3 bucket for config use

Inputs:

Name Description Type Default Required
application name of application string none yes
environment capacity of environment (prd/dev/lab) string none yes
customer-name owner of aws resources string none yes
project name of project string none yes
default-tags tags to be added to resources list none yes
aws-region-short short name of aws region (e.g. apne1) string none yes

Notes

  • It takes a while for AWS to process Config changes.
  • AWS managed config rules are automatically applied. Those rule may duplicate with Cis1.4.