Control: AWS > Turbot > Service Roles
Configure a custom stack on the AWS Account, per the Custom Stack > Source
.
A Guardrails Stack
is a set of resources configured by Guardrails, as specified via Terraform source. Stacks are responsible for the creation and deletion of multiple resources. Once created, stack resources are responsible for configuring themselves from the stack source via their Configured
control.
Resource Types
This control targets the following resource types:
Primary Policies
The following policies can be used to configure this control:
- Service Roles
- Service Roles > Configuration Recording
- Service Roles > Configuration Recording > Name
- Service Roles > Default EC2 Instance
- Service Roles > Default EC2 Instance > Name
- Service Roles > Default EC2 Instance > SSM Permissions
- Service Roles > Event Handlers [Global]
- Service Roles > Event Handlers [Global] > Name
- Service Roles > Flow Logging
- Service Roles > Flow Logging > Name
- Service Roles > Name Path
- Service Roles > Name Prefix
- Service Roles > Source
- Service Roles > SSM Notifications
- Service Roles > SSM Notifications > Name
- Service Roles > Terraform Version
Category
In Your Workspace
Developers
- tmod:@turbot/aws#/control/types/serviceRolesStack
- tmod:@turbot/turbot#/control/categories/configured
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws#/control/types/serviceRolesStack"
Get Controls
Control Type URI
Category URI
GraphQL
CLI