This rule emphasizes the importance of enabling GuardDuty for optimal Access Control.
Rule | GuardDuty should be enabled |
Framework | NIST 800-171 Revision 2 |
Severity | ✔ High |
Rule Description
This rule ensures that AWS GuardDuty is enabled for the compliance with the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-171 Revision 2 security controls. GuardDuty is a threat detection service offered by AWS that continuously monitors AWS accounts for malicious activities and suspicious behavior.
Troubleshooting Steps
If GuardDuty is not enabled for NIST 800-171 Revision 2 compliance, you can follow the below steps to troubleshoot and enable it:
Check GuardDuty Status:
Enable GuardDuty:
Configure GuardDuty for NIST 800-171 Revision 2:
Necessary Codes
No specific code is required to enable GuardDuty for NIST 800-171 Revision 2 compliance.
Remediation Steps
Follow the below step-by-step guide to remediate the rule and ensure GuardDuty is enabled for NIST 800-171 Revision 2 compliance:
Step 1: Access GuardDuty in AWS Management Console:
Step 2: Enable GuardDuty:
Step 3: Configure GuardDuty for NIST 800-171 Revision 2:
Step 4: Verify GuardDuty Compliance:
By following the above steps, GuardDuty will be enabled for NIST 800-171 Revision 2 compliance, helping you identify and detect potential security threats in your AWS environment.