A config rule that checks whether Amazon Elastic Kubernetes Service (Amazon EKS) endpoint is not publicly accessible. The rule is NON_COMPLIANT if the endpoint is publicly accessible.
AWSTemplateFormatVersion: '2010-09-09'
Description: ''
Resources:
ConfigRule:
Type: 'AWS::Config::ConfigRule'
Properties:
ConfigRuleName: eks-endpoint-no-public-access
Scope:
ComplianceResourceTypes: []
Description: >-
A config rule that checks whether Amazon Elastic Kubernetes Service
(Amazon EKS) endpoint is not publicly accessible. The rule is
NON_COMPLIANT if the endpoint is publicly accessible.
Source:
Owner: AWS
SourceIdentifier: EKS_ENDPOINT_NO_PUBLIC_ACCESS
MaximumExecutionFrequency: TwentyFour_Hours
Parameters: {}
Metadata: {}
Conditions: {}
Configuration Source: AWS Documentation
Additional Documentation: