How do I enable Amazon GuardDuty Malware Production for Amazon S3 via Cloudformation or CDK

0

Good afternoon,

I note that the recently released Amazon GuardDuty feature of Malware Production for Amazon S3 can be enabled via the Console (https://docs.aws.amazon.com/guardduty/latest/ug/enable-malware-protection-s3-bucket.html). It also possible to enable this feature via Cloudformation or CDK?

Thxs in advance, Adrian

1 Answer
0

Here is a link to the CloudFormation documentation for GuardDuty Malware Protection

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-guardduty-malwareprotectionplan.html

{
  "Type" : "AWS::GuardDuty::MalwareProtectionPlan",
  "Properties" : {
      "Actions" : CFNActions,
      "ProtectedResource" : CFNProtectedResource,
      "Role" : String,
      "Tags" : [ TagItem, ... ]
    }
}

In your case, you are wanting to protect S3 so the code would look like the following to specify the S3 Bucket.

{
  "Type" : "AWS::GuardDuty::MalwareProtectionPlan",
  "Properties" : {
      "Actions" : CFNActions,
      "ProtectedResource" : {
          "S3Bucket" : S3Bucket
      },
      "Role" : String,
      "Tags" : [ TagItem, ... ]
    }
}

Hope this helps!

profile pictureAWS
EXPERT
iBehr
answered 4 months ago
profile pictureAWS
EXPERT
reviewed 4 months ago
  • Cool. I'll give that a shot. Thxs

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions