cloudfront-s3-origin-access-control-enabled - AWS Config

cloudfront-s3-origin-access-control-enabled

Checks if an Amazon CloudFront distribution with an Amazon Simple Storage Service (Amazon S3) Origin type has origin access control (OAC) enabled. The rule is NON_COMPLIANT for CloudFront distributions with Amazon S3 origins that don't have OAC enabled.

Identifier: CLOUDFRONT_S3_ORIGIN_ACCESS_CONTROL_ENABLED

Resource Types: AWS::CloudFront::Distribution

Trigger type: Configuration changes

AWS Region: Only available in US East (N. Virginia) Region

Parameters:

None

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.