aws.acm-certificate

Filters

• config-compliance

• event

• finding

• health-event

• marked-for-op

• ops-item

• tag-count

• value

Actions

• auto-tag-user

• copy-related-tag

• delete

• invoke-lambda

• invoke-sfn

• mark-for-op

• notify

• post-finding

• post-item

• put-metric

• remove-tag

• tag

• webhook

delete

Action to delete an ACM Certificate To avoid unwanted deletions of certificates, it is recommended to apply a filter to the rule :example:

policies:
  - name: acm-certificate-delete-expired
    resource: acm-certificate
    filters:
      - type: value
        key: NotAfter
        value_type: expiration
        op: lt
        value: 0
    actions:
      - delete

properties:
  type:
    enum:
    - delete
required:
- type