22

Development Config Rules

Last Update hace 5 meses

AWS Config Rule: CodeBuild Project OAuth Check AWS Config Rule: CodeBuild Plaintext Creds. in Env. Variables AWS Config Rule: CodeBuild Project Artifact Encryption AWS Config Rule: CodeBuild Project Environment Privileged Mode Enabled AWS Config Rule: Lambda Function Public Access Prohibited

AWS Config Rule: Lambda Function With DLQ

LAMBDA_DLQ_CHECK

Fernando Honig

Last Update hace 6 meses

Description: Checks whether an AWS Lambda function is configured with a dead-letter queue. The rule is NON_COMPLIANT if the Lambda function is not configured with a dead-letter queue.


Trigger type: Configuration changes


AWS Region: All supported AWS regions except Asia Pacific (Jakarta), Asia Pacific (Hyderabad), Asia Pacific (Osaka), Canada West (Calgary), Europe (Spain), China (Ningxia) Region

How to Resolve Manually 

To resolve this manually, you need to create a DLQ SQS Queue and make sure your Lambda Function is configured to use it.


To create an SQS DLQ Queue open the Amazon SQS console and create a Queue.


Then, go to the AWS Lambda console and edit your Lambda Function. Go to the Asynchronous invocation option under the Configuration tab, and click Edit. Select your just created DLQ and click Save.


If you’re using CloudFormation to create your Lambda Functions, add the following:

Make sure you add the following IAM Permissions to the Role that is running your Lambda Function:

Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us