AWS CloudFormation Guard: Policy-As-Code Evaluation Tool
Difficulty: Intermediate
Duration: 2 minutes and 39 seconds
Students: 58
In this lesson, you'll look at AWS CloudFormation Guard and how it can help you safely provision compliant cloud resources on AWS.
Learning Objectives
By the end of this lesson, you will have a greater understanding of AWS CloudFormation Guard, including:
- what this tool is and the benefit it provides.
- guard rule syntax.
- how to use CloudFormation Guard.
- how to validate your templates against Guard rules.
Intended Audience
This lesson has been created for two main groups of AWS users:
- Compliance administrators and IT compliance analysts
- CloudFormation or Terraform users, such as Software Engineers, Systems Managers, and DevOps engineers.
Prerequisites
- An understanding of at least one infrastructure as code product, preferably CloudFormation, as I will be using CloudFormation template examples. There are also references to basic AWS services, such as EC2, IAM, and S3 - so it’s important you have some familiarity with the AWS landscape as well. Additionally, it helps to understand the well-architected framework and how it can be used to ensure compliance of your infrastructure.
Covered Topics