AWS Config Rule for approved AMIs

gistfile1.yml

  Ec2ApprovedAmiRule:
    Type: AWS::Config::ConfigRule
    Properties: 
      ConfigRuleName: Ec2ApprovedAmiRule
      InputParameters: !Sub '{ "amiIds" : "${AllowedAmi}" }'
      Scope:
        ComplianceResourceTypes:
          - "AWS::EC2::Instance"
      Source: 
        Owner: AWS
        SourceIdentifier: APPROVED_AMIS_BY_ID