ec2-security-group-attached-to-eni-periodic
Checks if non-default security groups are attached to Elastic network interfaces (ENIs). The rule is NON_COMPLIANT if the security group is not associated with an ENI. Security groups not owned by the calling account evaluate as NOT_APPLICABLE.
Note
This rule reports on the AWS::EC2::SecurityGroup
resource type.
However, in order for the rule to run effectively, you must enable the recording of the AWS::EC2::NetworkInterface
resource type.
Identifier: EC2_SECURITY_GROUP_ATTACHED_TO_ENI_PERIODIC
Resource Types: AWS::EC2::SecurityGroup
Trigger type: Periodic
AWS Region: All supported AWS regions
Parameters:
- None
AWS CloudFormation template
To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.