You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
41 lines
1.4 KiB
HCL
41 lines
1.4 KiB
HCL
resource "aws_config_config_rule" "cloudtrail_enabled" {
|
|
count = var.enable_aws_config && var.rule_cloudtrail_enabled ? 1 : 0
|
|
name = "multi-region-cloud-trail-enabled"
|
|
maximum_execution_frequency = "TwentyFour_Hours"
|
|
|
|
source {
|
|
owner = "AWS"
|
|
source_identifier = "MULTI_REGION_CLOUD_TRAIL_ENABLED"
|
|
}
|
|
tags = var.tags
|
|
depends_on = [aws_config_configuration_recorder.config_recorder]
|
|
}
|
|
|
|
resource "aws_config_config_rule" "cloudtrail_validation_enabled" {
|
|
count = var.enable_aws_config && var.rule_cloudtrail_validation_enabled ? 1 : 0
|
|
name = "cloud-trail-log-validation-enabled"
|
|
maximum_execution_frequency = "TwentyFour_Hours"
|
|
|
|
source {
|
|
owner = "AWS"
|
|
source_identifier = "CLOUD_TRAIL_LOG_FILE_VALIDATION_ENABLED"
|
|
}
|
|
tags = var.tags
|
|
depends_on = [aws_config_configuration_recorder.config_recorder]
|
|
}
|
|
|
|
|
|
|
|
resource "aws_config_config_rule" "cloudtrail_cloudwatch_logs_enabled" {
|
|
count = var.enable_aws_config && var.rule_cloudtrail_cloudwatch_logs_enabled ? 1 : 0
|
|
name = "cloud-trail-cloud-watch-logs-enabled"
|
|
maximum_execution_frequency = "TwentyFour_Hours"
|
|
|
|
source {
|
|
owner = "AWS"
|
|
source_identifier = "CLOUD_TRAIL_CLOUD_WATCH_LOGS_ENABLED"
|
|
}
|
|
tags = var.tags
|
|
depends_on = [aws_config_configuration_recorder.config_recorder]
|
|
}
|