Control: Route 53 domains should not expire within next 7 days
Description
This controls ensures that all the domain names registered with AWS Route 53 or transferred to AWS Route 53 are renewed 7 days before their validity period ends.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.route53_domain_expires_7_daysSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.route53_domain_expires_7_days --shareSQL
This control uses a named query:
select arn as resource, case when date(expiration_date) - date(current_date) >= 7 then 'ok' else 'alarm' end as status, title || ' set to expire in ' || extract(day from expiration_date - current_date) || ' days.' as reason , region, account_idfrom aws_route53_domain;