Skip to main content

Configure AWS RDS DB Instances should have deletion protection enabled

Quick Links

Configure AWS RDS DB Instances should have deletion protection enabled
Use Case for AWS RDS DB Instances should have deletion protection enabled
Triage Guides by Violation Type
1. Triage AWS RDS DB Instances should have deletion protection enabled DELETION_PROTECTION_NOT_ENABLED

How do I enable this policy?

Signature:
  Type: Pyrae::Policy::PolicyDocument::Signatory
  Properties:
    SignatureTeamUrn: { "PyRef": "PyraeTeam" }
    PolicyUrn: "urn:pyrae:policy:us-west-2:sAutx4ZxiqTJUzJdvky2km:policy/rdsDbInstanceDeletionProtectionPolicy"

What permissions does this policy require in my AWS account?

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "rds:DescribeDBInstances"
      ],
      "Resource": "*"
    }
  ]
}

What resources match this policy?

Type: Pyrae::Observer::MatchingRule
Properties:
  MatchAccountType: aws
  MatchUrnService: rds
  MatchUrnResourceType: db

Quick Links
How do I enable this policy?
What permissions does this policy require in my AWS account?
What resources match this policy?