aws.rds-param-group

Resource manager for RDS parameter groups.

Filters

• config-compliance

• event

• finding

• list-item

• marked-for-op

• metrics

• ops-item

• reduce

• value

Actions

• auto-tag-user

• copy

• copy-related-tag

• delete

• invoke-lambda

• invoke-sfn

• mark-for-op

• modify

• notify

• post-finding

• post-item

• put-metric

• remove-tag

• tag

• webhook

copy

Action to copy an RDS parameter group.

example:

policies:
  - name: rds-param-group-copy
    resource: rds-param-group
    filters:
      - DBParameterGroupName: original_pg_name
    actions:
      - type: copy
        name: copy_name

properties:
  description:
    type: string
  name:
    type: string
  type:
    enum:
    - copy
required:
- name
- type

Permissions - rds:CopyDBParameterGroup

delete

Action to delete an RDS parameter group

example:

policies:
  - name: rds-param-group-delete
    resource: rds-param-group
    filters:
      - DBParameterGroupName: pg_name
    actions:
      - type: delete

properties:
  type:
    enum:
    - delete
required:
- type

Permissions - rds:DeleteDBParameterGroup

modify

Action to modify an RDS parameter group

example:

policies:
  - name: rds-param-group-modify
    resource: rds-param-group
    filters:
      - DBParameterGroupName: pg_name
    actions:
      - type: modify
        params:
        - name: autocommit
          value: "1"
        - name: max_connections
          value: "100"

properties:
  params:
    items:
      apply-method:
        enum:
        - immediate
        - pending-reboot
        type: string
      name:
        type: string
      required:
      - name
      - value
      type: object
      value:
        type: string
    type: array
  type:
    enum:
    - modify
required:
- params
- type

Permissions - rds:DescribeDBParameters, rds:ModifyDBParameterGroup