Policy Packs
Enforce Encryption at Rest Is Enabled for AWS S3 Buckets

Policy Setting: AWS > S3 > Bucket > Encryption at Rest > Customer Managed Key

Policies

This policy setting is dependent on the following policy types:

Source

resource "turbot_policy_setting" "aws_s3_bucket_encryption_at_rest_customer_managed_key" {
resource = turbot_policy_pack.main.id
type = "tmod:@turbot/aws-s3#/policy/types/bucketEncryptionAtRestCustomerManagedKey"
# Add your CMK id/arn/alias below
value = "alias/turbot/default"
}