Pass in KMS key for Cloud Watch - Githubissues

lacework / terraform-aws-agentless-scanning

Terraform module for configuring an integration with Lacework and AWS for agentless scanning

MIT License

4 stars 9 forks source link

Pass in KMS key for Cloud Watch #118

Closed badass-aoz closed 1 year ago

badass-aoz commented 1 year ago

Summary

Pass in the key secret manager KMS key ARN id to be used for cloudwatch log group encryption.

How did you test this change?

Testing on Agentless tier

Created a KMS
Modified https://github.com/lacework/terraform-aws-agentless-scanning/tree/main/examples/single-account-single-region to create a testing deployment
Edited the KMS access policy so it could be used for the newly created log group
Re-run the above deployment with my change, observe that KMS has been enabled :

Issue

https://lacework.atlassian.net/browse/LINK-2235

badass-aoz commented 1 year ago

merged in #119