# appsync-associated-with-waf
<a name="appsync-associated-with-waf"></a>

Checks if Amazon AppSync APIs are associated with Amazon WAFv2 web access control lists (ACLs). The rule is NON\_COMPLIANT for an Amazon AppSync API if it is not associated with a web ACL. 



**Identifier:** APPSYNC\_ASSOCIATED\_WITH\_WAF

**Resource Types:** AWS::AppSync::GraphQLApi

**Trigger type:** Periodic

**Amazon Web Services Region:** All supported Amazon regions except Asia Pacific (New Zealand), Asia Pacific (Thailand), Asia Pacific (Jakarta), Africa (Cape Town), Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Malaysia), Asia Pacific (Melbourne), Amazon GovCloud (US-East), Amazon GovCloud (US-West), Mexico (Central), Israel (Tel Aviv), Asia Pacific (Taipei), Canada West (Calgary), Europe (Spain), Europe (Zurich) Region

**Parameters:**

wafWebAclARNs (Optional)Type: CSV  
Comma-separated list of Amazon Resource Names (ARNs) for authorized web ACLs.

## Amazon CloudFormation template
<a name="w2aac20c16c17b7d185c19"></a>

To create Amazon Config managed rules with Amazon CloudFormation templates, see [Creating Amazon Config Managed Rules With Amazon CloudFormation Templates](aws-config-managed-rules-cloudformation-templates.md).