Skip to main content

🔌 AWS RDS Cluster - object.extracts.yaml

  • Contextual name: 🔌 object.extracts.yaml
  • ID: /types/CA10__CaAwsDbCluster__c/object.extracts.yaml

Used In

LogicPolicyFlags
🧠 prod.logic.yaml🟢🛡️ AWS RDS Aurora Cluster access is not consistent🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Aurora Cluster Backtracking is not enabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Aurora Cluster Multi-AZ Deployment is not enabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster Backup Retention Period is less than 7 days🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster Deletion Protection is not enabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster Encryption is not enabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster has a common master username🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster is not configured to copy all tags to snapshots🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster IAM Database Authentication is not enabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Cluster required log exports to CloudWatch Logs are not enabled🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS RDS Multi-AZ Cluster Auto Minor Version Upgrade is not enabled🟢🟢 x3

Content

Open File

---
extracts:
  - name: CA10__engine__c
    value:
      FIELD:
        path: CA10__engine__c
        undeterminedIf:
          # https://docs.aws.amazon.com/cli/latest/reference/rds/describe-db-clusters.html
          # "Engine" attribute represents a non-nullable string.
          isEmpty: DB Engine value cannot be empty. Potential data corruption.
# Values: Yes | No. Not nullable. Cannot have no access, retrieved via rds:DescribeDBClusters
  - name: CA10__autoMinorVersionUpgrade__c
    value:
      FIELD:
        path: CA10__autoMinorVersionUpgrade__c
# Number. Can't have no access, retrieved via rds:DescribeDBClusters
  - name: CA10__backupRetentionPeriod__c
    value:
      FIELD:
        path: CA10__backupRetentionPeriod__c
# Number. Can't have no access, retrieved via rds:DescribeDBClusters
  - name: CA10__backtrackWindow__c
    value:
      FIELD:
        path: CA10__backtrackWindow__c
# Checkbox.
  - name: CA10__multiAZ__c
    value:
      FIELD:
        path: CA10__multiAZ__c
# Checkbox.
  - name: CA10__storageEncrypted__c
    value:
      FIELD:
        path: CA10__storageEncrypted__c
# Text.
  - name: CA10__masterUsername__c
    value:
      FIELD:
        path: CA10__masterUsername__c
# Checkbox.
  - name: CA10__iamDatabaseAuthenticationEnabled__c
    value:
      FIELD:
        path: CA10__iamDatabaseAuthenticationEnabled__c
  - name: CA10__status__c
    value:
      FIELD:
        path: CA10__status__c
        undeterminedIf:
          # https://docs.aws.amazon.com/cli/latest/reference/rds/describe-db-clusters.html
          # "Engine" attribute represents a non-nullable string.
          isEmpty: DB Status value cannot be empty. Potential data corruption.
# Nullable. Can't have no access, retrieved via rds:DescribeDBClusters
  - name: CA10__enabledCloudwatchLogsExports__c
    value:
      FIELD:
        path: CA10__enabledCloudwatchLogsExports__c
# Checkbox.
  - name: CA10__copyTagsToSnapshot__c
    value:
      FIELD:
        path: CA10__copyTagsToSnapshot__c