37

Network Config Rules

Last Update a month ago

AWS Config Rule: WAF V2 Logging Enabled AWS Config Rule: WAF Regional Web ACL Not Empty AWS Config Rule: VPC Subnet Auto Assign Public IP Disabled AWS Config Rule: ACM Certificate Expiration Check AWS Config Rule: ALB HTTP To HTTPS Redirection Check

AWS Config Rule: ELB TLS HTTPS Listeners Only

ELB_TLS_HTTPS_LISTENERS_ONLY

Fernando Honig

Last Update 2 months ago

Description: Checks if your Classic Load Balancer is configured with SSL or HTTPS listeners.

  • If the Classic Load Balancer does not have a listener configured, then the rule returns NOT_APPLICABLE.
  • The rule is COMPLIANT if the Classic Load Balancer listeners are configured with SSL or HTTPS.
  • The rule is NON_COMPLIANT if a listener is not configured with SSL or HTTPS.


Trigger type: Configuration changes


AWS Region: All supported AWS regions except Middle East (UAE), Asia Pacific (Osaka), Canada West (Calgary), Europe (Spain), Europe (Zurich) Region

How to Resolve Manually

Load Balancer Listeners are normally the first thing to configure when creating a new Classic Load Balancer. To ensure you are compliant with this rule, ensure you are using HTTPS (Standard Port 443) instead of the less secure HTTP (Standard Port 80) as a Listener.


Listeners can be re-configured after construction and you should always try to move from HTTP to HTTPS at your earliest convenience as the latter if a far more secure protocol.

Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us