Is your feature request related to a problem? Please describe.
When enabling GuardDuty, I'd like LZA to be able to enable the "Allow delegated administrator to attach relevant permissions to enable Malware Protection for member accounts." option within the GuardDuty settings page within the management account. This option is within the "Delegated Administrator" config section.
https://docs.aws.amazon.com/guardduty/latest/ug/malware-protection.html#configure-malware-protection-multi-account
Describe the feature you'd like
Supporting this option will remove the need for manual configuration of this option within the management account.
Additional context
Warning from within the GuardDuty delegated administration account:
Your organization’s management account has not allowed the delegated administrator to attach relevant permissions to enable GuardDuty Malware Protection feature on the member accounts. Please follow the instructions here.
While at it, include/exclude tags for ec2 runtime and malware protection (dataguard) configuration would be very convenient. Looks like no way to define configuration for newer dataguard features.
Is your feature request related to a problem? Please describe. When enabling GuardDuty, I'd like LZA to be able to enable the "Allow delegated administrator to attach relevant permissions to enable Malware Protection for member accounts." option within the GuardDuty settings page within the management account. This option is within the "Delegated Administrator" config section. https://docs.aws.amazon.com/guardduty/latest/ug/malware-protection.html#configure-malware-protection-multi-account
Describe the feature you'd like Supporting this option will remove the need for manual configuration of this option within the management account.
Additional context
Warning from within the GuardDuty delegated administration account: Your organization’s management account has not allowed the delegated administrator to attach relevant permissions to enable GuardDuty Malware Protection feature on the member accounts. Please follow the instructions here.