Hello,
I'm trying to prevent AWS Config from recording resources with a specific tag in my organization. The end result I'm looking for is that I have EC2 instances, DynamoDB tables, etc with a tag "awsconfig" and a value of "disable" and these are not recorded in AWS config.
I have found that you can configure the recorder to not record specific resources, however that wouldn't work since I have resources that I do want to capture that are the same type of resources I don't want to capture.
Additionally I have found the AWS RDK which is cool, but acts on rules and has no effect on recording of resources. I also have found this question but it seems geared towards still recording the resources, just not having a rule run against them.
Is what I'm looking to do possible or am I out of luck?
Thanks