elb-logging-enabled
Checks if the Application Load Balancer and the Classic Load Balancer have logging enabled. The rule is NON_COMPLIANT if the access_logs.s3.enabled
is false or access_logs.S3.bucket
is not equal to the s3BucketName that you provided.
Note
The rule does not apply to Network Load Balancers or Gateway Load Balancers.
Identifier: ELB_LOGGING_ENABLED
Resource Types: AWS::ElasticLoadBalancing::LoadBalancer, AWS::ElasticLoadBalancingV2::LoadBalancer
Trigger type: Configuration changes
Amazon Web Services Region: All supported Amazon regions except Asia Pacific (Hyderabad), US ISOB East (Ohio), Europe (Spain) Region
Parameters:
- s3BucketNames (Optional)
- Type: CSV
-
Comma-separated list of Amazon S3 bucket names for Amazon ELB to deliver the log files.
Amazon CloudFormation template
To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.