Policy: AWS > Backup > Enabled
Configure whether the AWS Backup service is enabled. This will only affect Guardrails managed User Roles and will allow the Guardrails managed user to access AWS Backup service. - Enabled policy allows Guardrails managed users to perform all the actions for the service - Enabled: Metadata Only policy allows Guardrails managed users to perform only the metadata level actions for the service (like describe*, list*)
Note: - Disabled policy disables the service but does NOT disable the API for Guardrails or SuperUsers - All the resource data stored in the Guardrails CMDB is considered to be metadata - For more information related to permissions and grant levels, please check the documentation
Targets
This policy targets the following resource types:
Controls
Setting this policy configures these controls:
- AWS > Backup > Backup Plan > Approved
- AWS > Backup > Backup Selection > Approved
- AWS > Backup > Backup Vault > Approved
- AWS > Backup > Recovery Point > Approved
Policy Specification
Schema Type | |
|---|---|
Default | |
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/iamPermissions
- tmod:@turbot/aws-backup#/policy/types/backupEnabled
- turbot graphql policy-type --id "tmod:@turbot/aws-backup#/policy/types/backupEnabled"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-backup#/policy/types/backupEnabled"
Get Policy TypeGet Policy Settings