Policy Setting: AWS > Logs > Log Group > Encryption at Rest
Policies
This policy setting is dependent on the following policy types:
Source
resource "turbot_policy_setting" "aws_logs_log_group_encryption_at_rest" { resource = turbot_policy_pack.main.id type = "tmod:@turbot/aws-logs#/policy/types/logGroupEncryptionAtRest" value = "Check: AWS SSE or higher" # value = "Check: Customer managed key" # value = "Check: Encryption at Rest > Customer Managed Key" # value = "Enforce: AWS SSE or higher" # value = "Enforce: Customer managed key" # value = "Enforce: Encryption at Rest > Customer Managed Key"}