AWS Config Rule: ECR Private Lifecycle Policy Configured
ECR_PRIVATE_LIFECYCLE_POLICY_CONFIGURED
Eduardo Van Cauteren
Last Update 4 months ago
Description: Checks if a private Amazon Elastic Container Registry (ECR) repository has at least one lifecycle policy configured. The rule is NON_COMPLIANT if no lifecycle policy is configured for the ECR private repository.
Configuration changes Configuration changes
AWS Region: All supported AWS regions except Asia Pacific (Jakarta), Middle East (UAE), Asia Pacific (Hyderabad), Israel (Tel Aviv), Europe (Spain), Europe (Zurich) Region
How to Resolve Manually
This config rule checks if a particular private Amazon Elastic Container Registry (ECR) repository has at least one lifecycle policy configured. The rule will be marked as non-compliant if there isn't any lifecycle policy present.
In order to resolve this, head on over Amazon ECR service within AWS Console, go to Repositories and click on the repository you want to add the policy to. Click on Lifecycle Policy within the left-side menu and finally click on Create rule button to define a policy.
Check the following screenshot for further reference:
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here
