AWS Config Rule: CloudFront Associated With WAF

CLOUDFRONT_ASSOCIATED_WITH_WAF

Ryan Ware

Last Update há 10 meses

Description: Checks if Amazon CloudFront distributions are associated with either WAF or WAFv2 web access control lists (ACLs). This rule is NON_COMPLIANT if a CloudFront distribution is not associated with a web ACL.


Trigger type: Configuration changes


AWS Region: Only available in US East (N. Virginia) Region


How to Resolve Manually

In order to ensure your Amazon CloudFront distribution is COMPLIANT with this AWS Config Rule, you will need to head to the Settings part of your distribution configuration and look for the AWS WAF web ACL section.


This optional setting allows you to choose a web Access Control List (ACL) in AWS WAF (Web Application Firewall) to associate with your CloudFront distribution. Simply choose an appropriate AWS WAF web ACL from this list, and choose save.


This will ensure that your CloudFront distribution is marked as COMPLAINT with regards to this AWS Config Rule.

For more information on managing and setting up an AWS WAF Web ACL, review the official AWS Documentation here


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

0 out of 0 liked this article

Still need help? Message Us