Policy: AWS > EMR > Security Configuration > Approved > Regions

A list of AWS regions in which AWS EMR security configurations are approved for use.

The expected format is an array of regions names. You may use the '*' and '?' wildcard characters.

This policy will be evaluated by the Approved control. If an AWS EMR security configuration is created in a region that is not in the approved list, it will be subject to the action specified in the AWS > EMR > Security Configuration > Approved policy.

See Approved for more information.

Resource Types

This policy targets the following resource types:

AWS > EMR > Security Configuration

Primary Policy

This policy is used with the following primary policy:

AWS > EMR > Security Configuration > Approved

Controls

AWS > EMR > Security Configuration > Approved

Policy Specification

Default template	`{% if $.regions \| length == 0 %} [] {% endif %}{% for item in $.regions %}- '{{ item }}' {% endfor %}`
Default template input	`\| { regions: policy(uri: "tmod:@turbot/aws-emr#/policy/types/emrApprovedRegionsDefault") }`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/resourceApproved

Policy Type URI

tmod:@turbot/aws-emr#/policy/types/securityConfigurationApprovedRegions

GraphQL

query policyType(id: "tmod:@turbot/aws-emr#/policy/types/securityConfigurationApprovedRegions") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-emr#/policy/types/securityConfigurationApprovedRegions'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-emr#/policy/types/securityConfigurationApprovedRegions'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-emr#/policy/types/securityConfigurationApprovedRegions"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-emr#/policy/types/securityConfigurationApprovedRegions"