cloudfront-s3-origin-non-existent-bucket

Checks if Amazon CloudFront distributions point to a non-existent S3 bucket. The rule is NON_COMPLIANT if `S3OriginConfig` for a CloudFront distribution points to a non-existent S3 bucket. The rule does not evaluate S3 buckets with static website hosting.

Identifier: CLOUDFRONT_S3_ORIGIN_NON_EXISTENT_BUCKET

Resource Types: AWS::CloudFront::Distribution

Trigger type: Periodic

AWS Region: Only available in China (Beijing), US East (N. Virginia) Region

Parameters:

None

AWS CloudFormation template

To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

cloudformation-termination-protection-check

cloudtrail-all-read-s3-data-event-check