Policy: AWS > ECS > Account Settings > Fargate FIPS Mode

Configure the Fargate FIPS Mode setting required for AWS > ECS > Account Settings. Enforce the use of FIPS mode for Fargate tasks at the account level to ensure compliance with federal cryptographic standards. This setting mandates that all Fargate tasks use FIPS-validated cryptographic algorithms, enhancing the security posture of workloads running on AWS Fargate and aligning with regulatory requirements for cryptographic security.

Targets

This policy targets the following resource types:

AWS > ECS > Account Settings

Controls

Setting this policy configures this control:

AWS > ECS > Account Settings > Fargate FIPS Mode

Policy Specification

Schema Type	`string`
Default	`Skip`
Valid Values [YAML]	`Check: Enabled` `Check: Disabled` `Enforce: Enabled` `Enforce: Disabled`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/security

Policy Type URI

tmod:@turbot/aws-ecs#/policy/types/ecsAccountSettingsFargateFipsMode

GraphQL

query policyType(id: "tmod:@turbot/aws-ecs#/policy/types/ecsAccountSettingsFargateFipsMode") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-ecs#/policy/types/ecsAccountSettingsFargateFipsMode'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-ecs#/policy/types/ecsAccountSettingsFargateFipsMode'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-ecs#/policy/types/ecsAccountSettingsFargateFipsMode"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-ecs#/policy/types/ecsAccountSettingsFargateFipsMode"