s3-access-point-in-vpc-only - Amazon Config
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

s3-access-point-in-vpc-only

Checks if an Amazon S3 access point does not allow access from the internet (NetworkOrigin is VPC). The rule is NON_COMPLIANT if NetworkOrigin is Internet.

Identifier: S3_ACCESS_POINT_IN_VPC_ONLY

Resource Types: AWS::S3::AccessPoint

Trigger type: Configuration changes

Amazon Web Services Region: All supported Amazon regions except US ISO West (Northern California), US ISO East, Asia Pacific (Malaysia), US ISOB East (Ohio), Canada West (Calgary) Region

Parameters:

None

Amazon CloudFormation template

To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.