Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

Rule: RDS DB Instance Should Be Protected by Backup Plan

This rule ensures that RDS DB instances are safeguarded by a backup plan to prevent data loss.

RuleRDS DB instance should be protected by backup plan
FrameworkFedRAMP Low Revision 4
Severity
High

RDS DB Instance Backup Plan for FedRAMP Low Revision 4

Rule Description

According to the FedRAMP Low Revision 4 compliance standard, all RDS (Relational Database Service) DB instances must have a backup plan in place to ensure data protection and availability.

Troubleshooting Steps (if applicable)

If you encounter any issues related to the RDS DB instance backup plan, follow the troubleshooting steps below:

  1. 1.
    Check if the RDS DB instance is configured with automatic backups enabled.
  2. 2.
    Verify that the backup retention period is set to a value that meets the compliance requirements.
  3. 3.
    Ensure that the backup window is properly configured and does not conflict with other maintenance activities.
  4. 4.
    Make sure that the correct IAM roles and permissions are assigned to the AWS account used to manage the RDS DB instance.
  5. 5.
    Validate that the backup storage allocated for the RDS DB instance is sufficient to accommodate the backup data.
  6. 6.
    Verify that the latest backups are being created at the expected intervals.

Necessary Codes (if applicable)

In this case, there are no specific codes required to configure the RDS DB instance backup plan. However, you may need to use AWS CLI or AWS Management Console to adjust the backup settings.

Remediation Steps

To implement the backup plan for the RDS DB instance and ensure compliance with FedRAMP Low Revision 4, follow the step-by-step guide below:

  1. 1.

    Step 1: Log in to the AWS Management Console.

  2. 2.

    Step 2: Navigate to the Amazon RDS service.

  3. 3.

    Step 3: Select the appropriate region where the RDS DB instance is located.

  4. 4.

    Step 4: Click on the "DB Instances" menu option on the left-hand side.

  5. 5.

    Step 5: Choose the desired RDS DB instance from the list.

  6. 6.

    Step 6: Under the "Instance actions" dropdown menu, select "Modify."

  7. 7.

    Step 7: Scroll down to the "Backup" section.

  8. 8.

    Step 8: Ensure that the "Backup retention period" is set to a value that meets the compliance requirements.

  9. 9.

    Step 9: Verify that the "Backup window" does not conflict with other maintenance activities.

  10. 10.

    Step 10: Review and confirm any additional settings related to the backup plan, such as the backup storage allocated.

  11. 11.

    Step 11: Click on the "Modify DB instance" button to save the changes.

  12. 12.

    Step 12: Monitor the RDS DB instance to ensure that backups are created at the expected intervals.

By following these steps, you will successfully implement an RDS DB instance backup plan that complies with the FedRAMP Low Revision 4 standard.

Is your System Free of Underlying Vulnerabilities?
Find Out Now