Table: aws_efs_filesystems

This table shows data for Amazon Elastic File System (EFS) Filesystems.

https://docs.aws.amazon.com/efs/latest/ug/API_FileSystemDescription.html (opens in a new tab)

The primary key for this table is arn.

Columns

NameType
_cq_iduuid
_cq_parent_iduuid
account_idutf8
regionutf8
arn (PK)utf8
backup_policy_statusutf8
tagsjson
creation_timetimestamp[us, tz=UTC]
creation_tokenutf8
file_system_idutf8
life_cycle_stateutf8
number_of_mount_targetsint64
owner_idutf8
performance_modeutf8
size_in_bytesjson
availability_zone_idutf8
availability_zone_nameutf8
encryptedbool
file_system_arnutf8
kms_key_idutf8
nameutf8
provisioned_throughput_in_mibpsfloat64
throughput_modeutf8

Example Queries

These SQL queries are sampled from CloudQuery policies and are compatible with PostgreSQL.

Amazon EFS volumes should be in backup plans

SELECT
  'Amazon EFS volumes should be in backup plans' AS title,
  account_id,
  arn AS resource_id,
  CASE
  WHEN backup_policy_status IS DISTINCT FROM 'ENABLED' THEN 'fail'
  ELSE 'pass'
  END
    AS status
FROM
  aws_efs_filesystems;

Unused EFS filesystem

SELECT
  'Unused EFS filesystem' AS title,
  account_id,
  arn AS resource_id,
  'fail' AS status
FROM
  aws_efs_filesystems
WHERE
  number_of_mount_targets = 0;

Amazon EFS should be configured to encrypt file data at rest using AWS KMS

SELECT
  'Amazon EFS should be configured to encrypt file data at rest using AWS KMS'
    AS title,
  account_id,
  arn AS resource_id,
  CASE
  WHEN encrypted IS NOT true OR kms_key_id IS NULL THEN 'fail'
  ELSE 'pass'
  END
    AS status
FROM
  aws_efs_filesystems;