bedrock-data-source-encryption-enabled
Checks whether an Amazon Bedrock data source is encrypted with a customer-managed KMS key. The rule is NON_COMPLIANT if the data source does not have ServerSideEncryptionConfiguration.KmsKeyArn configured.
Identifier: BEDROCK_DATA_SOURCE_ENCRYPTION_ENABLED
Resource Types: AWS::Bedrock::DataSource
Trigger type: Configuration changes
AWS Region: All supported AWS regions except Asia Pacific (New Zealand), Middle East (Bahrain), China (Beijing), Asia Pacific (Thailand), Asia Pacific (Jakarta), Africa (Cape Town), Middle East (UAE), Asia Pacific (Hong Kong), Asia Pacific (Malaysia), Asia Pacific (Melbourne), AWS GovCloud (US-East), AWS GovCloud (US-West), Mexico (Central), US West (N. California), Israel (Tel Aviv), Asia Pacific (Taipei), Canada West (Calgary), China (Ningxia) Region
Parameters:
- None
AWS CloudFormation template
To create AWS Config managed rules with AWS CloudFormation templates, see Creating AWS Config Managed Rules With AWS CloudFormation Templates.