Check if S3 bucket versioning is enabled according to Audit and Accountability (AU) standard.
Rule | S3 bucket versioning should be enabled |
Framework | NIST 800-53 Revision 5 |
Severity | ✔ High |
Rule Description:
S3 bucket versioning should be enabled to comply with the security requirements of the NIST 800-53 Revision 5 standard. Versioning allows you to track changes made to objects stored in an S3 bucket over time, providing enhanced data protection, durability, and recovery options.
Troubleshooting Steps:
Necessary Code:
No code is required for this specific rule. However, if versioning is not currently enabled, you will need to use the AWS Command Line Interface (CLI) or AWS SDKs to enable versioning on the S3 bucket.
Step-by-Step Guide for Remediation:
Open the AWS Management Console and navigate to the S3 service.
Locate the S3 bucket that needs versioning enabled and select it.
Click on the "Properties" tab in the bucket's details pane.
Scroll down to the "Versioning" section and click on the "Edit" button.
In the "Versioning" dialog box, select the option to "Enable versioning."
Click on the "Save" button to enable versioning for the S3 bucket.
Verify that versioning is enabled by refreshing the bucket's details and checking the "Versioning" section.
Notes: