This Policy Template leverages the multi cloud RightScale API. It will notify only if a security group has a port higher than Beginning High Port field open.
This policy has the following input parameters required when launching the policy.
- Email addresses of the recipients you wish to notify - Example: noreply@example.com
- Beginning High Port - Any port greater than or equal to this will trigger a report
The following policy actions are taken on any resources found to be out of compliance.
- Send an email report
This policy requires permissions to access RightScale resources (clouds, networks, security_groups and security_group_rules). Before applying this policy add the following roles to the user applying the policy. The roles should be applied to all Accounts where the policy will run or the Organization. For more information on modifying roles visit the Governance Docs
- Cloud Management - Observer
- AWS
- Azure
This Policy Template does not launch any instances, and so does not incur any cloud costs.