Aqua CSPM

CloudFront WAF Enabled

Quick Info

Plugin TitleCloudFront WAF Enabled
CloudAWS
CategoryCloudFront
DescriptionEnsures CloudFront distributions have WAF enabled.
More InfoEnabling WAF allows control over requests to the Cloudfront Distribution, allowing or denying traffic based off rules in the Web ACL
AWS Linkhttps://docs.aws.amazon.com/waf/latest/developerguide/web-acl-associating-cloudfront-distribution.html
Recommended Action1. Enter the WAF service. 2. Enter Web ACLs and filter by global. 3. If no Web ACL is found, Create a new global Web ACL and in Resource type to associate with web ACL, select the Cloudfront Distribution.

Detailed Remediation Steps