bo1984
commented
2 weeks ago Hello @LukaszJD !
Thank you for utilizing the Landing Zone Accelerator on AWS (LZA) solution. I've gone ahead and filed a feature request to support the TLS Configuration natively within the LZA solution. I will keep this issue open as we evaluate the item in our backlog and update you upon its release. Please let us know if you have any questions or concerns in the meantime.
Is your feature request related to a problem? Please describe. LZA currently does not natively support the creation of TLS Inspection configuration resource. As a work around we deployed it by implementing the customizations-config.yaml file, however we reached another limitation of LZA, when trying to associate the TLS config resource to FW policy.
Describe the feature you'd like Support for a TLS Inspection Configuration class in the network-config.yaml file, so that AWS Firewall can be linked to the Firewall Policy with associated TLS Configuration.