Policy: AWS > DynamoDB > Permissions > Lockdown > Table Approved Regions

Configure whether lockdown policies are enabled to prohibit modification of Table Approved Regions.

Note: It is recommended to include approved regions from all AWS > DynamoDB > Table > Approved > Regions policy settings to ensure that this lockdown policy will not restrict any approved regions for tables.

Example: - us-east-1 - us-*

Resource Types

This policy targets the following resource types:

AWS > Account

Primary Policy

This policy is used with the following primary policy:

AWS > DynamoDB > Permissions > Lockdown

Policy Specification

Schema Type	`array`
Default	`- '*'`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/iamPermissions

Policy Type URI

tmod:@turbot/aws-dynamodb#/policy/types/dynamodbPermissionsLockdownTableApprovedRegions

GraphQL

query policyType(id: "tmod:@turbot/aws-dynamodb#/policy/types/dynamodbPermissionsLockdownTableApprovedRegions") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-dynamodb#/policy/types/dynamodbPermissionsLockdownTableApprovedRegions'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-dynamodb#/policy/types/dynamodbPermissionsLockdownTableApprovedRegions'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-dynamodb#/policy/types/dynamodbPermissionsLockdownTableApprovedRegions"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-dynamodb#/policy/types/dynamodbPermissionsLockdownTableApprovedRegions"