AWS Config Rule: EFS Access Point Enforce User Identity
EFS_ACCESS_POINT_ENFORCE_USER_IDENTITY
Ryan Ware
Last Update 3 maanden geleden
Description: Checks if Amazon Elastic File System (Amazon EFS) access points are configured to enforce a user identity. The rule is NON_COMPLIANT if 'PosixUser' is not defined or if parameters are provided and there is no match in the corresponding parameter.
AWS Region: All supported AWS regions
Trigger type: Configuration changes
How to Resolve Manually
To resolve this manually, you will need to enforce a user identity for your Amazon EFS Access Point. This can be configured in the same way you would configure a Root Directory.
POSIX UID is what is used for all file system operations using this Access Point by default, and AWS Config will mark your EFS Access Point as non-compliant if this is left in the default state.
Below you will see an image of the configurational settings for the POSIX user. Assign a user ID in order to enforce a user identity and become compliant with this AWS Config Rule.
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here
