Aqua CSPM

ELBv2 Deletion Protection

Quick Info

Plugin TitleELBv2 Deletion Protection
CloudAWS
CategoryELBv2
DescriptionEnsures ELBv2 load balancers are configured with deletion protection.
More InfoELBv2 load balancers should be configured with deletion protection to prevent accidentaldeletion of live resources in production environments.
AWS Linkhttps://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html#deletion-protection
Recommended ActionUpdate ELBv2 load balancers to use deletion protection to prevent accidental deletion

Detailed Remediation Steps

  1. Log in to the AWS Management Console.
  2. Select the “Services” option and search for EC2.
  3. In the “EC2 Dashboard” scroll down and look for “Load Balancers” and click on “Load Balancers” to get into “Load Balancers” dashboard.
  4. Select the “Load Balancer” which needs to be verified.
  5. On the “Load Balancers” page, scroll down and check under the “Attributes” whether the “Delete Protection” is enabled or disabled.
  6. Repeat steps number 2 - 5 to check other Load balancers in the account.
  7. Navigate to EC2 dashboard at https://console.aws.amazon.com/ec2/.
  8. On the “EC2” dashboard, scroll down and select the “Load balancers” option from the left navigation panel and select the “Load balancer” in which “Delete Protection” needs to be enabled.
  9. On the Description tab, choose Edit attributes.
  10. On the Edit load balancer attributes page, select Enable for Delete Protection, and then choose Save.
  11. Repeat steps number 7 - 10 to update ELBv2 load balancers to use deletion protection to prevent accidental deletion.