21 lines
574 B
HCL
21 lines
574 B
HCL
resource "aws_guardduty_detector" "main" {
|
|
enable = true
|
|
finding_publishing_frequency = "FIFTEEN_MINUTES"
|
|
datasources {
|
|
s3_logs { enable = true }
|
|
}
|
|
}
|
|
|
|
resource "aws_securityhub_account" "main" {}
|
|
|
|
resource "aws_config_configuration_recorder" "main" {
|
|
name = "${var.project}-config-recorder"
|
|
role_arn = aws_iam_role.config.arn
|
|
}
|
|
|
|
resource "aws_config_delivery_channel" "main" {
|
|
name = "${var.project}-config-delivery"
|
|
s3_bucket_name = aws_s3_bucket.logs.id
|
|
depends_on = [aws_config_configuration_recorder.main]
|
|
}
|