My Saved Presets
You must be logged in to view saved presets

Loading Library ...

GuardDuty Untreated Findings Check

A Config rule that checks whether the Amazon GuardDuty has findings that are non archived. The rule is NON_COMPLIANT if Amazon GuardDuty has non archived low/medium/high severity findings older than the specified number in the daysLowSev/daysMediumSev/daysHighSev parameter.

This config rule supports the following parameters:

  • daysLowSev
    • Required: No
    • Type: int
    • Description:The number of days Amazon GuardDuty low severity findings are allowed to stay non archived. The default is 30 days.
    • Default Value: 30
  • daysMediumSev
    • Required: No
    • Type: int
    • Description:The number of days Amazon GuardDuty medium severity findings are allowed to stay non archived. The default is 7 days.
    • Default Value: 7
  • daysHighSev
    • Required: No
    • Type: int
    • Description:The number of days Amazon GuardDuty high severity findings are allowed to stay non archived. The default is 1 day.
    • Default Value: 1

ConfigRule

AWS::Config::ConfigRule

Scope

ComplianceResourceTypes

Source
CustomPolicyDetails

SourceDetails

CloudFormation Template

© 2024 asecurecloud. All rights reserved.