A Config rule that checks whether the required public access block settings are configured from account level. The rule is only NON_COMPLIANT when the fields set below do not match the corresponding fields in the configuration item.

This config rule supports the following parameters:

  • IgnorePublicAcls
    • Required: No
    • Type: String
    • Description:IgnorePublicAcls is enforced or not
    • Default Value: True
  • BlockPublicPolicy
    • Required: No
    • Type: String
    • Description:BlockPublicPolicy is enforced or not
    • Default Value: True
  • BlockPublicAcls
    • Required: No
    • Type: String
    • Description:BlockPublicAcls is enforced or not
    • Default Value: True
  • RestrictPublicBuckets
    • Required: No
    • Type: String
    • Description:RestrictPublicBuckets is enforced or not
    • Default Value: True

ConfigRule
AWS::Config::ConfigRule


Scope

ComplianceResourceTypes

Source *
CustomPolicyDetails
SourceDetails

CloudFormation Template

Share Template