AWS Config Rule: EFS Access Point Enforce User Identity

EFS_ACCESS_POINT_ENFORCE_USER_IDENTITY

Ryan Ware

Last Update há 6 meses

Description: Checks if Amazon Elastic File System (Amazon EFS) access points are configured to enforce a user identity. The rule is NON_COMPLIANT if 'PosixUser' is not defined or if parameters are provided and there is no match in the corresponding parameter.


AWS Region: All supported AWS regions


Trigger type: Configuration changes


How to Resolve Manually

To resolve this manually, you will need to enforce a user identity for your Amazon EFS Access Point. This can be configured in the same way you would configure a Root Directory.


POSIX UID is what is used for all file system operations using this Access Point by default, and AWS Config will mark your EFS Access Point as non-compliant if this is left in the default state.


Below you will see an image of the configurational settings for the POSIX user. Assign a user ID in order to enforce a user identity and become compliant with this AWS Config Rule.


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

0 out of 0 liked this article

Still need help? Message Us