Table: aws_ec2_regional_configs

This table shows data for Amazon Elastic Compute Cloud (EC2) Regional Configs.

https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetEbsDefaultKmsKeyId.html (opens in a new tab) https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_GetEbsEncryptionByDefault.html (opens in a new tab)

The composite primary key for this table is (account_id, region).

Columns

Name	Type
_cq_id	`uuid`
_cq_parent_id	`uuid`
account_id (PK)	`utf8`
region (PK)	`utf8`
ebs_encryption_enabled_by_default	`bool`
ebs_default_kms_key_id	`utf8`

Example Queries

These SQL queries are sampled from CloudQuery policies and are compatible with PostgreSQL.

EBS default encryption should be enabled

SELECT
  'EBS default encryption should be enabled' AS title,
  account_id,
  concat(account_id, ':', region) AS resource_id,
  CASE
  WHEN ebs_encryption_enabled_by_default IS NOT true THEN 'fail'
  ELSE 'pass'
  END
    AS status
FROM
  aws_ec2_regional_configs;

Introduction