AWS Config Rule: CloudFront Associated With WAF
CLOUDFRONT_ASSOCIATED_WITH_WAF
Ryan Ware
Last Update 9 mesi fa
Description: Checks if Amazon CloudFront distributions are associated with either WAF or WAFv2 web access control lists (ACLs). This rule is NON_COMPLIANT if a CloudFront distribution is not associated with a web ACL.
Trigger type: Configuration changes
AWS Region: Only available in US East (N. Virginia) Region
How to Resolve Manually
In order to ensure your Amazon CloudFront distribution is COMPLIANT with this AWS Config Rule, you will need to head to the Settings part of your distribution configuration and look for the AWS WAF web ACL section.
This optional setting allows you to choose a web Access Control List (ACL) in AWS WAF (Web Application Firewall) to associate with your CloudFront distribution. Simply choose an appropriate AWS WAF web ACL from this list, and choose save.
This will ensure that your CloudFront distribution is marked as COMPLAINT with regards to this AWS Config Rule.
For more information on managing and setting up an AWS WAF Web ACL, review the official AWS Documentation here
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here
