AWS Config Rule: CloudWatch Alarm Action Check

CLOUDWATCH_ALARM_ACTION_CHECK

Fernando Honig

Last Update منذ ٨ أشهر

Description: Checks whether CloudWatch alarms have at least one alarm action, one INSUFFICIENT_DATA action, or one OK action enabled. Optionally, checks whether any of the actions matches one of the specified ARNs.


Trigger type: Configuration changes


AWS Region: All supported AWS regions


How to Resolve Manually

To resolve manually, you will need to configure the non-compliant alarms in the Cloudwatch dashboard. Each Alarm will need at least one action for the following three triggers. Of course you can add an action for each of these triggers, but an alarm without any actions for any of these triggers isn't really an alarm, which is why this config rule will flag you for it.


Below is an example of a Cloudwatch Alarm being configured to send a notification to an SNS Topic, for when the particular alarm is IN ALARM. This will have been configured as a pre-defined metric outside the threshold of what is defined as acceptable.


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us