Turbot Guardrails Hub 
Hub
  • Mods
  • Policy Packs
  • Docs
  • Home
ModsPolicy PacksDocsHome
Policy Packs
AWS CIS v3.0.0 - Section 2 - Storage
  • AWS > EC2 > Account Attributes > EBS Encryption by Default
  • AWS > EC2 > Instance > Approved
  • AWS > EC2 > Instance > Approved > Root Volume Encryption at Rest
  • AWS > EC2 > Volume > Approved
  • AWS > EC2 > Volume > Approved > Encryption at Rest
  • AWS > EFS > FileSystem > Approved
  • AWS > EFS > FileSystem > Approved > Encryption at Rest
  • AWS > EFS > Mount Target > Approved
  • AWS > EFS > Mount Target > Approved > Custom
  • AWS > RDS > DB Instance > Approved
  • AWS > RDS > DB Instance > Approved > Encryption at Rest
  • AWS > RDS > DB Instance > Auto Minor Version Upgrade
  • AWS > RDS > DB Instance > Publicly Accessible
  • AWS > S3 > Bucket > Encryption in Transit
  • AWS > S3 > Bucket > Public Access Block
  • AWS > S3 > Bucket > Public Access Block > Settings
Get Involved
Discuss on Slack

Policy Setting: AWS > EFS > Mount Target > Approved

Policies

This policy setting is dependent on the following policy types:

  • AWS > EFS > Mount Target > Approved

Source

resource "turbot_policy_setting" "aws_efs_mount_target_approved" {
  resource = turbot_policy_pack.main.id
  type     = "tmod:@turbot/aws-efs#/policy/types/mountTargetApproved"
  note     = "AWS CIS v3.0.0 - Control: 2.4.1"
  value    = "Check: Approved"
  # value    = "Enforce: Delete unapproved"
  # value    = "Enforce: Delete unapproved if new"
}
Guardrails
Guardrails Hub
  • Hub
  • Docs
  • Blog
  • Changelog
Products
  • GuardrailsGuardrails
  • PipesPipes
  • SteampipeSteampipe
  • PowerpipePowerpipe
  • FlowpipeFlowpipe
  • TailpipeTailpipe
Turbot
  • Home
  • About us
  • We're hiring!
  • Contact us
Community

Our community of practitioners love to discuss cloud governance & security.

Slack logoJoin us on Slack →

System StatusLegalSecurity
Terms of UseSecurityPrivacy