Top navigation bar > Template Scanner
The Template Scanner add-on enables you to run Cloud Conformity Rules on your AWS CloudFormation template, Cloud Conformity Profiles, and Accounts. You can add preventative security and governance controls to the workflow to identify and remediate issues prior to launching any services and resources.
Accessing Template Scanner
Request access to the Template Scanner add-on for your organisation by submitting a ticket through our Customer Support portal or send an email to firstname.lastname@example.org.
How to use Template Scanner?
You can use the Template Scanner in two ways:
- Scanning a CloudFormation Template, Profile, or an Account via UI
- Template Scanner API
Scan via UI
- Select the type of rule settings you want to scan for:
- Default rule settings: upload and scan for rule settings in your default CloudFormation template in either JSON or YAML format.
- Profile rule settings: upload and scan for rule settings for a selected Profile.
- Account rule settings: upload and scan for rule settings for a selected Account.
- Click on Upload and scan to view scan results for your selected rule settings.
- You will get a message for missing parameters while scanning your template. Decide whether you want to Proceed or Cancel the scanning process.
Note: Resources with missing parameters will not be scanned and thereby result in partial scan results.
- Review Checks from scan results. Failed checks will display a Resolve button with a link to resolution steps. For more information on the anatomy of the rule, see Rules.
Resolution steps provided with failed checks are for workflows via CLI or Console. You can also use these steps as a guide for resolution within CloudFormation.
Why do I not see any scan results?
You may receive an empty response or an error for any of the following reasons:
- Unsupported resource type: See supported resource types. We have plans to add support for more source types over time. If there is a specific resource type you need as a priority, please login to Cloud Conformity and submit a ticket to our support team.
- Unsupported rules: Template Scanner only supports resource level rules. Refer to Cloud Conformity service catalog for a list of rules and services
- Parameter(s) with no default value: CloudFormation templates with parameters that have no default values may fail to be processed.