- Newest
- Most votes
- Most comments
Hello, it does not necessarily depend on the rule per se, it depends on the Trigger type of the rule, where in the 2nd case it gets triggered when there is a configuration change (therefore you have options to choose which resources/scope) whereas in the 1st case its triggered periodically, which does not depend on the resources. And of course some rules are triggered one way or the other depending on the nature.
Hope this helps. Thanks!
Hello, thank you for the response!
Just to clarify - so in the case of the vpc-flow-logs-enabled rule, there is no way to filter the scope since the trigger type is periodic?
Correct. Some rules are triggered based on the scope, some periodic, and there is also hybrid. For hybrid rules both configuration change and periodic triggers. For these rules, AWS Config evaluates your resources when it detects a configuration change and also at the frequency that you specify. You can learn more about Trigger types here. https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config-rules.html
If there are any further questions feel free to ask. If this answer is satisfactory to you please mark it as accepted. Thanks!
And specifically for vpc-flow-logs-enabled rule Trigger type is Periodic, as documented here. https://docs.aws.amazon.com/config/latest/developerguide/vpc-flow-logs-enabled.html
Relevant content
- asked a year ago
- asked 2 years ago
- Accepted Answerasked 5 days ago
- asked 9 months ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated 23 days ago
- AWS OFFICIALUpdated 3 years ago
If there are any further questions feel free to ask. If the answer below is satisfactory to you please mark it as accepted. Thanks!