Config

---

Resource Icon

Resource Overview

A resource that records AWS account resource configuration information and allows you to identify relationships between resources.

Associated Resources

Parent Resources

• Region

Connected Resources

• S3Bucket
• SnsTopic

Resource Configuration

Basic Settings

• enable_config_recorder : Whether to enable or disable the configuration recorder - true, false
• role_name : Name of the IAM Role used by AWS Config
• linked_s3_bucket_name : Name of the S3 bucket used to store configuration records
• s3_key_prefix : Prefix of the S3 bucket to use
• enable_sns_topic : Whether to enable the SNS Topic used by AWS Config to deliver notifications - true, false
• linked_sns_topic_name : Name of the SNS Topic used by AWS Config to deliver notifications
• delivery_frequency : Frequency at which AWS Config delivers configuration snapshots - 1hour, 3hours, 6hours, 12hours, 24hours

Recording Method (recording_method)

• recording_method.enable_all_supported : Whether AWS Config records configuration changes for all supported regional resource types - true, false
• recording_method.exclude_resource_types : List of AWS resource types for which AWS Config records configuration changes
• recording_method.include_global_resource_types : Whether to include all supported global resource types along with recorded resources - true, false
• recording_method.specific_resource_types : Whether to include specific resource types along with recorded resources

Config Rule (config_rule)

• config_rule.rule_owner : Ownership and management of the AWS Config rule - AWS, customLambda, customPolicy
• config_rule.source_identifier : Predefined identifier for AWS managed config rules
• config_rule.target_lambda_name : Name of the Lambda function used in custom Lambda rules
• config_rule.custom_policy_message_type : Notification type that triggers AWS Config evaluations - ConfigurationItemChangeNotification, OversizedConfigurationItemChangeNotification, ScheduledNotification, ConfigurationSnapshotDeliveryCompleted
• config_rule.maximum_execution_frequency : Frequency at which AWS Config runs evaluations for periodically triggered rules - 1hour, 3hours, 6hours, 12hours, 24hours
• config_rule.custom_policy_text : Policy definition containing the custom policy config rule

Tags

• tag : Tags used to categorize resources

---

References

• Amazon Config(AWS)
• Amazon Config(Terraform)
• Amazon Config(Terraform)
• Amazon Config(Terraform)
• Amazon Config(Terraform)
• Amazon Config(Terraform)