Load Balancer HTTPS Only
Ensures LBs are configured to only accept
For maximum security, LBs can be configured to only
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.
-
Log in to the Google Oracle Platform Console.
-
Scroll down the left navigation panel and choose the “Load Balancers” under the “Networking.”
-
On the “Load Balancers” page, select the “Load Balancer” by clicking on the “Name” as a link to access the “Load Balancer."
-
On the “Load Balancer Details” page, scroll down and select “Listeners” under the “Resources”.
-
Check if there is any non-HTTPS listeners attached with the “Load balancer”. Non-HTTPS listeners are not suggested as best practices under GCP.
-
Repeat steps number 2 - 5 to check other “Load balancer” in the accounts.
-
Navigate to “Load balancers” under the “Networking”, click on the “Name” as a link to access the “Load balancer” which needs to modify the “Listeners” attached.
-
Click on the “Listners” option under the “Resources” to remove any non-HTTPS lister.
-
Click on the 3dots at the extreme right to open the “Options” tab and click on the “Delete” option to remove the non-HTTPS listener.
-
On the “Delete Listener” tab, click on the “Delete” button to make the changes.
-
Create a HTTPS listeners and attached the SSL’s as per the company policy.
-
Repeat steps number 7 - 10 to remove non-HTTPS listeners from load balancer.