cloudwatch-alarm-action-check

Checks if CloudWatch alarms have an action configured for the ALARM, INSUFFICIENT_DATA, or OK state. Optionally checks if any actions match a named ARN. The rule is NON_COMPLIANT if there is no action specified for the alarm or optional parameter.

Identifier: CLOUDWATCH_ALARM_ACTION_CHECK

Resource Types: AWS::CloudWatch::Alarm

Trigger type: Configuration changes

Amazon Web Services Region: All supported Amazon regions

Parameters:

alarmActionRequired
Type: String
Default: true: Alarms have at least one action.
insufficientDataActionRequired
Type: String
Default: true: Alarms have at least one action when the alarm transitions to the INSUFFICIENT_DATA state from any other state.
okActionRequired
Type: String
Default: false: Alarms have at least one action when the alarm transitions to an OK state from any other state.
action1 (Optional)
Type: String: The action to execute, specified as an ARN.
action2 (Optional)
Type: String: The action to execute, specified as an ARN.
action3 (Optional)
Type: String: The action to execute, specified as an ARN.
action4 (Optional)
Type: String: The action to execute, specified as an ARN.
action5 (Optional)
Type: String: The action to execute, specified as an ARN.

Amazon CloudFormation template

To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

cloudtrail-security-trail-enabled

cloudwatch-alarm-action-enabled-check