Skip to main content

Configure AWS EFS Unused File System Detector

  1. Configure AWS EFS Unused File System Detector
  2. Use Case for AWS EFS Unused File System Detector
  3. Triage Guides by Violation Type
    1. Triage AWS EFS Unused File System Detector EFS_UNUSED_MOUNT

How do I enable this policy?

Signature:
Type: Pyrae::Policy::PolicyDocument::Signatory
Properties:
SignatureTeamUrn: { "PyRef": "PyraeTeam" }
PolicyUrn: "urn:pyrae:policy:us-west-2:sAutx4ZxiqTJUzJdvky2km:policy/AwsEfsUnusedFileSystemDetector"

What permissions does this policy require in my AWS account?

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"elasticfilesystem:DescribeFileSystems",
"elasticfilesystem:DescribeMountTargets"
],
"Resource": "*"
}
]
}

What resources match this policy?

Type: Pyrae::Observer::MatchingRule
Properties:
MatchAccountType: aws
MatchUrnService: elasticfilesystem
MatchUrnResourceType: file-system