Overview

A Config rule that checks whether the AWS Lambda function policy attached to the Lambda resource prohibits public access. If the Lambda function policy allows public access it is noncompliant.

Configuration Templates

Items
1
Size
0.7 KB
AWSTemplateFormatVersion: '2010-09-09'
Description: ''
Resources:
  ConfigRule:
    Type: 'AWS::Config::ConfigRule'
    Properties:
      ConfigRuleName: lambda-function-public-access-prohibited
      Description: >-
        A Config rule that checks whether the AWS Lambda function policy
        attached to the Lambda resource prohibits public access. If the Lambda
        function policy allows public access it is noncompliant.
      InputParameters: {}
      Scope:
        ComplianceResourceTypes:
          - 'AWS::Lambda::Function'
      Source:
        Owner: AWS
        SourceIdentifier: LAMBDA_FUNCTION_PUBLIC_ACCESS_PROHIBITED
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Customize Cf Template

Rule Parameters

No rule paramters
 
* Required field

Sources and Documentation

Configuration Source: AWS Documentation

Additional Documentation: