AWS Config Rule: S3 Lifecycle Policy Check

Description: Checks if a lifecycle rule is configured for an Amazon Simple Storage Service (Amazon S3) bucket. The rule is NON_COMPLIANT if there is no active lifecycle configuration rules or the configuration does not match with the parameter values.

Trigger type: Configuration changes

AWS Region: All supported AWS regions except China (Beijing), Asia Pacific (Jakarta), Asia Pacific (Hyderabad), Asia Pacific (Melbourne), AWS GovCloud (US-East), AWS GovCloud (US-West), Europe (Spain), China (Ningxia), Europe (Zurich) Region

This Config Rule checks your Amazon S3 Buckets for existing Lifecycle rules. If the Amazon S3 Bucket does not have any Lifecycle rule present the S3 Bucket will be marked as NON_COMPLIANT.

Here's how you can create your own Amazon S3 Lifecycle rule for your S3 Bucket so that you can be compliant with this particular AWS Config Rule. An Amazon S3 Lifecycle rule will automatically transition objects in your S3 Bucket into either a more archival storage class, or if no longer needed after a set time period, will set them to expire and delete them if you so desire.

To start this process, navigate to your Amazon S3 Dashboard within the AWS Console. Choose your Amazon S3 Bucket and head on over to the Management Tab, where you will find the Lifecycle Rules at the top.

Once you have created an Amazon S3 Bucket Lifecycle rule and applied it to your S3 Bucket, this Config Rule will be COMPLIANT with this particular resource. Remember they are on a 1-to-1 relationship so you will need to create lifecycle rule for each Amazon S3 Bucket.

Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here