Turbot Guardrails Hub 
Hub
  • Mods
  • Policy Packs
  • Docs
  • Home
ModsPolicy PacksDocsHome
Mods
AWS
Loading resources...

Resource Type: AWS > EC2 > Account Attributes

The EC2 Account Attributes resource type is part of the AWS Elastic Cloud Compute (EC2) service. These attributes define account-level settings that impact the behavior and limits of EC2 resources.

Resource Context

Account Attributes is a part of the EC2 service.

Each Account Attributes lives under a Region.

Controls

The primary controls for AWS > EC2 > Account Attributes are:

  • Block Public Access for AMIs
  • Block Public Access for Snapshots
  • CMDB
  • Discovery
  • EBS Encryption by Default
  • Instance Metadata Service Defaults
  • Intelligent Assessment
  • Prevention

It is also targeted by these controls:

  • AWS > HIPAA > EC2 > EBS default encryption should be enabled
  • AWS > NIST 800-53 > EC2 > EBS default encryption should be enabled

Quick Actions

  • Router
  • Update Block Public Access for AMIs
  • Update Block Public Access for Snapshots
  • Update EBS Encryption by Default
  • Update Instance Metadata Service Defaults

Category

  • Compute

In Your Workspace

  • Controls by Resource Type report
  • Policy Settings by Resource Type report
  • Resources by Resource Type report

Developers

    Resource Type URI
    • tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes
    • Category URI
    • tmod:@turbot/turbot#/resource/categories/compute
    • GraphQL
    • query resource(id: "tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes") { … }
    • query resourceActivities(filter: "resourceId:'tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes'") { … }
    • mutation createResource(input: { … })
    • mutation updateResource(input: { … })
    • CLI
    • Get Resource
    • turbot graphql resource --id "tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes"
    • Steampipe Query
    • Get Resource
    • select * from guardrails_resource where resource_type_uri = 'tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes';
      • Get Policy Settings (By Resource ID)
    • select * from guardrails_policy_setting where filter = 'resourceTypeId:"tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes"';
      • Get Resource Notification
    • select * from guardrails_notification where resource_type_uri = 'tmod:@turbot/aws-ec2#/resource/types/ec2AccountAttributes' and notification_type in ('resource_updated', 'resource_created');
Guardrails
Guardrails Hub
  • Hub
  • Docs
  • Blog
  • Changelog
Products
  • GuardrailsGuardrails
  • PipesPipes
  • SteampipeSteampipe
  • PowerpipePowerpipe
  • FlowpipeFlowpipe
  • TailpipeTailpipe
Turbot
  • Home
  • About us
  • We're hiring!
  • Contact us
Community

Our community of practitioners love to discuss cloud governance & security.

Slack logoJoin us on Slack →

System StatusLegalSecurity
Terms of UseSecurityPrivacy
180
Mods
497
Resource Types
8,691
Policies
3,362
Controls
1,833
Quick Actions
540
IAM