Control: Ensure that ACM certificates are not in pending validation state
Description
This control ensures that ACM certificates are not in pending validation state. When certificates are not validated within 72 hours after the request is made, those certificates become invalid.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.acm_certificate_no_pending_validation_certificateSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.acm_certificate_no_pending_validation_certificate --shareSQL
This control uses a named query:
select certificate_arn as resource, case when status = 'PENDING_VALIDATION' then 'info' else 'ok' end as status, title || ' status is ' || status || '.' as reason , region, account_idfrom aws_acm_certificate;