Error: putting ConfigService Conformance Pack (hipaa): operation error Config Service: PutConformancePack.

[eric-poitras]

Got an error when updating our application tonight:

Error: putting ConfigService Conformance Pack (hipaa): operation error Config Service: PutConformancePack, https response error StatusCode: 400, RequestID: ..., ConformancePackTemplateValidationException: Invalid conformance pack template provided. Errors found: [Number of resources provided in the template exceeds the allowed limit]. Fix your template and try again.

This seems to be caused by the new rule that was added today in the PR: #429

Here is URL of the policy that is now failing: https://raw.githubusercontent.com/awslabs/aws-config-rules/master/aws-config-conformance-packs/Operational-Best-Practices-for-HIPAA-Security.yaml

Not sure about the way forward. Is there a limit that we must request to increase on our account ?

[eric-poitras]

According to this, the rule limit cannot be increased: https://docs.aws.amazon.com/config/latest/developerguide/configlimits.html

[eric-poitras]

131 rules as shown by a search in the doc:

I think we need to sacrifice a rule or modify the config service :)

[joseamoroso]

This is affecting other conformance packs as well. E.g., Operational-Best-Practices-for-CIS-Critical-Security-Controls-v8-IG3 with 131 rules