guardrails-samples icon indicating copy to clipboard operation
guardrails-samples copied to clipboard

Published 20 hours ago verified publisher icon turbot

Add policy pack - AWS Account Disconnection Prep

Open Joeturbot opened this issue 6 months ago • 1 comments

Control objective* A set of policy settings to remove Guardrails-managed resources from an AWS Account. This is independent of CMDB policy settings to cut down the number of resources in the Guardrails CMDB for a given account.

Remediation Set these policy settings to the values indicated:

  1. AWS > Turbot > Permissions set to Enforce: None.
  2. AWS > Turbot > Audit Trail set to Enforce: Not configured.
  3. AWS > Turbot > Event Handlers set to Enforce: Not configured.
  4. AWS > Turbot > Event Handlers [Global] set to Enforce: Not configured.
  5. AWS > Turbot > Service Roles set to Enforce: Not configured.
  6. AWS > Turbot > Logging > Bucket set to Enforce: Not configured.
  7. AWS > Turbot > Event Poller to Disabled.

Categories I don't see a category that cleanly fits this requirement.

Additional context Reference: AWS Account Decommission Docs

Joeturbot avatar Aug 08 '24 17:08 Joeturbot