On the AWS config rule console, specifying the Resource identifier does not limit the scope of this config rule to the designated resource.
Am I misunderstanding the intent of this field?
I set the
Resources: S3:Bucket
Resource Identifier: [bucket ARN] or [bucket name] (I have tried both)
The rule still evaluates all s3 buckets in my account;
Please let me know if I am misunderstanding the intended use of this field.
On the AWS config rule console, specifying the Resource identifier does not limit the scope of this config rule to the designated resource. Am I misunderstanding the intent of this field?
I set the Resources: S3:Bucket
Resource Identifier: [bucket ARN] or [bucket name] (I have tried both)
The rule still evaluates all s3 buckets in my account;
Please let me know if I am misunderstanding the intended use of this field.