AWS Config announces launch of an additional 42 managed Config rules for various use cases such as security, cost, durability, and operations. You can now search, discover, enable and manage these additional rules directly from AWS Config and govern more use cases for your AWS environment.
With this launch, you can now enable these controls across your account or across your organization. For example, you can evaluate your tagging strategies across Amazon EKS Fargate profiles, Amazon EC2 Network Insight Analyses, AWS Glue Machine learning transforms. Or you can assess your security posture across Amazon Cognito Identity pools, Amazon Lightsail buckets, AWS Amplify apps and more. Additionally, you can leverage Conformance Packs to group these new controls and deploy across an account or across organization, streamlining your multi-account governance.
For the full list of recently released rules, visit the AWS Config developer guide. For description of each rule and the AWS Regions in which it is available, please refer our Config managed rules documentation. To start using Config rules, please refer our documentation.
New Rules Launched:
- AMPLIFY_APP_NO_ENVIRONMENT_VARIABLES
- AMPLIFY_BRANCH_DESCRIPTION
- APIGATEWAY_STAGE_DESCRIPTION
- APIGATEWAYV2_STAGE_DESCRIPTION
- API_GWV2_STAGE_DEFAULT_ROUTE_DETAILED_METRICS_ENABLED
- APIGATEWAY_STAGE_ACCESS_LOGS_ENABLED
- APPCONFIG_DEPLOYMENT_STRATEGY_MINIMUM_FINAL_BAKE_TIME
- APPCONFIG_DEPLOYMENT_STRATEGY_TAGGED
- APPFLOW_FLOW_TRIGGER_TYPE_CHECK
- APPMESH_VIRTUAL_NODE_CLOUD_MAP_IP_PREF_CHECK
- APPMESH_VIRTUAL_NODE_DNS_IP_PREF_CHECK
- APPRUNNER_SERVICE_IP_ADDRESS_TYPE_CHECK
- APPRUNNER_SERVICE_MAX_UNHEALTHY_THRESHOLD
- APS_RULE_GROUPS_NAMESPACE_TAGGED
- AUDITMANAGER_ASSESSMENT_TAGGED
- BATCH_MANAGED_COMPUTE_ENV_ALLOCATION_STRATEGY_CHECK
- BATCH_MANAGED_SPOT_COMPUTE_ENVIRONMENT_MAX_BID
- COGNITO_IDENTITY_POOL_UNAUTHENTICATED_LOGINS
- COGNITO_USER_POOL_PASSWORD_POLICY_CHECK
- CUSTOMERPROFILES_DOMAIN_TAGGED
- DEVICEFARM_PROJECT_TAGGED
- DEVICEFARM_TEST_GRID_PROJECT_TAGGED
- DMS_REPLICATION_INSTANCE_MULTI_AZ_ENABLED
- EC2_LAUNCH_TEMPLATES_EBS_VOLUME_ENCRYPTED
- EC2_NETWORK_INSIGHTS_ANALYSIS_TAGGED
- EKS_FARGATE_PROFILE_TAGGED
- GLUE_ML_TRANSFORM_TAGGED
- IOT_SCHEDULED_AUDIT_TAGGED
- IOT_PROVISIONING_TEMPLATE_DESCRIPTION
- IOT_PROVISIONING_TEMPLATE_JITP
- IOT_PROVISIONING_TEMPLATE_TAGGED
- KINESIS_VIDEO_STREAM_MINIMUM_DATA_RETENTION
- LAMBDA_FUNCTION_DESCRIPTION
- LIGHTSAIL_BUCKET_ALLOW_PUBLIC_OVERRIDES_DISABLED
- RDS_MYSQL_CLUSTER_COPY_TAGS_TO_SNAPSHOT_CHECK
- RDS_PGSQL_CLUSTER_COPY_TAGS_TO_SNAPSHOT_CHECK
- ROUTE53_RESOLVER_FIREWALL_DOMAIN_LIST_TAGGED
- ROUTE53_RESOLVER_FIREWALL_RULE_GROUP_ASSOCIATION_TAGGED
- ROUTE53_RESOLVER_FIREWALL_RULE_GROUP_TAGGED
- ROUTE53_RESOLVER_RESOLVER_RULE_TAGGED
- RUM_APP_MONITOR_TAGGED
- RUM_APP_MONITOR_CLOUDWATCH_LOGS_ENABLED
Categories: general:products/aws-config,marketing:marchitecture/management-and-governance
Source: Amazon Web Services
Latest Posts
- Amazon OpenSearch Serverless now supports FIPS compliant endpoints
- Amazon Bedrock AgentCore Runtime now supports direct code deployment
- Amazon RDS for Oracle is now available with R7i memory-optimized instances offering up to 64:1 memory-to-vCPU ratio
- AWS Service Reference Information now supports SDK Operation to Action mapping
![(Updated) Microsoft Teams: Automatically set work location by connecting to a Wi-Fi network [MC1081568]](https://mwpro.co.uk/wp-content/uploads/2024/08/pexels-pixabay-290660-150x150.webp "(Updated) Microsoft Teams: Automatically set work location by connecting to a Wi-Fi network [MC1081568] 6")
![(Updated) Microsoft 365 Copilot: MCP-based agents now available in Copilot and Microsoft 365 admin center [MC1169071]](https://mwpro.co.uk/wp-content/uploads/2024/08/pexels-googledeepmind-18069694-150x150.webp "(Updated) Microsoft 365 Copilot: MCP-based agents now available in Copilot and Microsoft 365 admin center [MC1169071] 7")