Product logo
DocsBlogPricing

Control types for @turbot/aws-cloudfront

AWS > CloudFront > CloudFront Origin Access Identity > Active

Take an action when an AWS CloudFront cloudfront origin access identity is not active based on the AWS > CloudFront > CloudFront Origin Access Identity > Active > * policies.

The Active control determines whether the resource is in active use, and if not, has the ability to delete / cleanup the resource. When running an automated compliance environment, it's common to end up with a wide range of alarms that are difficult and time consuming to clear. The Active control brings automated, well-defined control to this process.

The Active control checks the status of all defined Active policies for the resource (AWS > CloudFront > CloudFront Origin Access Identity > Active > *), raises an alarm, and takes the defined enforcement action. Each Active sub-policy can calculate a status of active, inactive or skipped. Generally, if the resource appears to be Active for any reason it will be considered Active.

Note the contrast with Approved, where if the resource appears to be Unapproved for any reason it will be considered Unapproved.

See Active for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/cloudFrontOriginAccessIdentityActive
Parent
Category
Targets

AWS > CloudFront > CloudFront Origin Access Identity > Approved

Take an action when an AWS CloudFront cloudfront origin access identity is not approved based on AWS > CloudFront > CloudFront Origin Access Identity > Approved > * policies.

The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.

See Approved for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/cloudFrontOriginAccessIdentityApproved
Parent
Category
Targets

AWS > CloudFront > CloudFront Origin Access Identity > CMDB

Record and synchronize details for the AWS CloudFront cloudfront origin access identity into the CMDB.

The CMDB control is responsible for populating and updating all the attributes for that resource type in the Turbot CMDB.

If set to Skip then all changes to the CMDB are paused - no new resources will be discovered, no updates will be made and deleted resources will not be removed.

To cleanup resources and stop tracking changes, set this policy to "Enforce: Disabled".

URI
tmod:@turbot/aws-cloudfront#/control/types/cloudFrontOriginAccessIdentityCmdb
Parent
Category
Targets

AWS > CloudFront > CloudFront Origin Access Identity > Discovery

Discover all AWS CloudFront cloudfront origin access identity resources and add them to the CMDB.

The Discovery control is responsible for finding resources of a specific type. It periodically searches for new resources and saves them to the CMDB. Once discovered, resources are then responsible for tracking changes to themselves through the CMDB control.

URI
tmod:@turbot/aws-cloudfront#/control/types/cloudFrontOriginAccessIdentityDiscovery
Parent
Category
Targets

AWS > CloudFront > CloudFront Origin Access Identity > Usage

The Usage control determines whether the number of AWS CloudFront cloudfront origin access identity resources exceeds the configured usage limit for this account.

You can configure the behavior of this control with the AWS > CloudFront > CloudFront Origin Access Identity > Usage policy, and set the limit with the AWS > CloudFront > CloudFront Origin Access Identity > Usage > Limit policy.

URI
tmod:@turbot/aws-cloudfront#/control/types/cloudFrontOriginAccessIdentityUsage
Parent
Category
Targets

AWS > CloudFront > Distribution > Active

Take an action when an AWS CloudFront distribution is not active based on the AWS > CloudFront > Distribution > Active > * policies.

The Active control determines whether the resource is in active use, and if not, has the ability to delete / cleanup the resource. When running an automated compliance environment, it's common to end up with a wide range of alarms that are difficult and time consuming to clear. The Active control brings automated, well-defined control to this process.

The Active control checks the status of all defined Active policies for the resource (AWS > CloudFront > Distribution > Active > *), raises an alarm, and takes the defined enforcement action. Each Active sub-policy can calculate a status of active, inactive or skipped. Generally, if the resource appears to be Active for any reason it will be considered Active.

Note the contrast with Approved, where if the resource appears to be Unapproved for any reason it will be considered Unapproved.

See Active for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/distributionActive
Parent
Category
Targets

AWS > CloudFront > Distribution > Approved

Take an action when an AWS CloudFront distribution is not approved based on AWS > CloudFront > Distribution > Approved > * policies.

The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.

See Approved for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/distributionApproved
Parent
Category
Targets

AWS > CloudFront > Distribution > CMDB

Record and synchronize details for the AWS CloudFront distribution into the CMDB.

The CMDB control is responsible for populating and updating all the attributes for that resource type in the Turbot CMDB.

If set to Skip then all changes to the CMDB are paused - no new resources will be discovered, no updates will be made and deleted resources will not be removed.

To cleanup resources and stop tracking changes, set this policy to "Enforce: Disabled".

URI
tmod:@turbot/aws-cloudfront#/control/types/distributionCmdb
Parent
Category
Targets

AWS > CloudFront > Distribution > Discovery

Discover all AWS CloudFront distribution resources and add them to the CMDB.

The Discovery control is responsible for finding resources of a specific type. It periodically searches for new resources and saves them to the CMDB. Once discovered, resources are then responsible for tracking changes to themselves through the CMDB control.

URI
tmod:@turbot/aws-cloudfront#/control/types/distributionDiscovery
Parent
Category
Targets

AWS > CloudFront > Distribution > Tags

Take an action when an AWS CloudFront distribution tags is not updated based on the AWS > CloudFront > Distribution > Tags > * policies.

If the resource is not updated with the tags defined in AWS > CloudFront > Distribution > Tags > Template, this control raises an alarm and takes the defined enforcement action.

See Tags for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/distributionTags
Parent
Category
Targets

AWS > CloudFront > Distribution > Usage

The Usage control determines whether the number of AWS CloudFront distribution resources exceeds the configured usage limit for this account.

You can configure the behavior of this control with the AWS > CloudFront > Distribution > Usage policy, and set the limit with the AWS > CloudFront > Distribution > Usage > Limit policy.

URI
tmod:@turbot/aws-cloudfront#/control/types/distributionUsage
Parent
Category
Targets

AWS > CloudFront > Streaming Distribution > Active

Take an action when an AWS CloudFront streaming distribution is not active based on the AWS > CloudFront > Streaming Distribution > Active > * policies.

The Active control determines whether the resource is in active use, and if not, has the ability to delete / cleanup the resource. When running an automated compliance environment, it's common to end up with a wide range of alarms that are difficult and time consuming to clear. The Active control brings automated, well-defined control to this process.

The Active control checks the status of all defined Active policies for the resource (AWS > CloudFront > Streaming Distribution > Active > *), raises an alarm, and takes the defined enforcement action. Each Active sub-policy can calculate a status of active, inactive or skipped. Generally, if the resource appears to be Active for any reason it will be considered Active.

Note the contrast with Approved, where if the resource appears to be Unapproved for any reason it will be considered Unapproved.

See Active for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/streamingDistributionActive
Parent
Category
Targets

AWS > CloudFront > Streaming Distribution > Approved

Take an action when an AWS CloudFront streaming distribution is not approved based on AWS > CloudFront > Streaming Distribution > Approved > * policies.

The Approved control checks the status of the defined Approved sub-policies for the resource. If the resource is not approved according to any of these policies, this control raises an alarm and takes the defined enforcement action.

See Approved for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/streamingDistributionApproved
Parent
Category
Targets

AWS > CloudFront > Streaming Distribution > CMDB

Record and synchronize details for the AWS CloudFront streaming distribution into the CMDB.

The CMDB control is responsible for populating and updating all the attributes for that resource type in the Turbot CMDB.

If set to Skip then all changes to the CMDB are paused - no new resources will be discovered, no updates will be made and deleted resources will not be removed.

To cleanup resources and stop tracking changes, set this policy to "Enforce: Disabled".

URI
tmod:@turbot/aws-cloudfront#/control/types/streamingDistributionCmdb
Parent
Category
Targets

AWS > CloudFront > Streaming Distribution > Discovery

Discover all AWS CloudFront streaming distribution resources and add them to the CMDB.

The Discovery control is responsible for finding resources of a specific type. It periodically searches for new resources and saves them to the CMDB. Once discovered, resources are then responsible for tracking changes to themselves through the CMDB control.

URI
tmod:@turbot/aws-cloudfront#/control/types/streamingDistributionDiscovery
Parent
Category
Targets

AWS > CloudFront > Streaming Distribution > Tags

Take an action when an AWS CloudFront streaming distribution tags is not updated based on the AWS > CloudFront > Streaming Distribution > Tags > * policies.

If the resource is not updated with the tags defined in AWS > CloudFront > Streaming Distribution > Tags > Template, this control raises an alarm and takes the defined enforcement action.

See Tags for more information.

URI
tmod:@turbot/aws-cloudfront#/control/types/streamingDistributionTags
Parent
Category
Targets

AWS > CloudFront > Streaming Distribution > Usage

The Usage control determines whether the number of AWS CloudFront streaming distribution resources exceeds the configured usage limit for this account.

You can configure the behavior of this control with the AWS > CloudFront > Streaming Distribution > Usage policy, and set the limit with the AWS > CloudFront > Streaming Distribution > Usage > Limit policy.

URI
tmod:@turbot/aws-cloudfront#/control/types/streamingDistributionUsage
Parent
Category
Targets