Rule: RDS DB Instance Backup Should Be Enabled

Ensure that RDS DB instance backup feature is enabled for data protection and recovery.

Rule	RDS DB instance backup should be enabled
Framework	FedRAMP Low Revision 4
Severity	✔ Medium

RDS DB Instance Backup Policy for FedRAMP Low Revision 4

Description

This policy requires that the backup feature be enabled for all Amazon RDS (Relational Database Service) DB instances in order to comply with the security requirements of FedRAMP (Federal Risk and Authorization Management Program) Low, Revision 4. Enabling backups ensures data protection and availability in case of unexpected incidents or data loss.

Troubleshooting Steps

If backups are not enabled for an RDS DB instance, follow these troubleshooting steps:

1.

Verify the DB instance: Ensure that the RDS DB instance is running and accessible.

2.

Check the backup configuration: Review the configuration settings of the RDS DB instance to confirm if the backup feature is enabled.

3.

Modify the instance settings: If backups are not enabled, modify the instance settings to enable automatic backups.

4.

Check IAM permissions: Ensure that the IAM (Identity and Access Management) user or role associated with the RDS DB instance has the necessary permissions required to enable backups.

Necessary Codes

There are no specific codes required for enabling backups as it can be done through the AWS Management Console, AWS CLI (Command Line Interface), or through AWS SDKs (Software Development Kits).

Step-by-Step Guide for Remediation

Follow these steps to enable backups for an RDS DB instance:

1.

Step 1: Access the AWS Management Console.

2.

Step 2: Go to the Amazon RDS service.

3.

Step 3: Select the desired DB instance from the list.

4.

Step 4: Click on the "Modify" button in the top navigation bar.

5.

Step 5: Scroll down to the "Backup" section.

6.

Step 6: Enable the "Automatic backups" option.

7.

Step 7: Specify the desired retention period for backups. It is recommended to set a retention period that aligns with the backup requirements of FedRAMP Low Revision 4.

8.

Step 8: Click on the "Apply immediately" checkbox to enable the changes immediately.

9.

Step 9: Click on the "Modify DB instance" button.

10.

Step 10: Wait for the modification to be applied to the RDS DB instance. This process may take a few minutes.

11.

Step 11: Once the modification is complete, backups will be automatically enabled for the RDS DB instance.

Ensure that you regularly monitor and verify the successful creation of backups for your RDS DB instances to ensure compliance with the backup policy.

Please note that the steps provided above are generalized and may vary slightly depending on the AWS Management Console version or the chosen method (AWS CLI, SDKs) for enabling backups.

Rule: RDS DB Instance Backup Should Be Enabled

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Description

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Troubleshooting Steps

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Necessary Codes

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Step-by-Step Guide for Remediation

Is your System Free of Underlying Vulnerabilities? Find Out Now

Description

Troubleshooting Steps

Necessary Codes

Step-by-Step Guide for Remediation

Is your System Free of Underlying Vulnerabilities?
Find Out Now