Rule: ELB Application Load Balancer Deletion Protection Enabled

This rule requires enabling deletion protection for ELB application load balancers to prevent accidental deletion.

Rule	ELB application load balancer deletion protection should be enabled
Framework	NIST Cybersecurity Framework (CSF) v1.1
Severity	✔ High

Description:

Enabling deletion protection for an Application Load Balancer (ALB) in AWS Elastic Load Balancer (ELB) is an important security measure to ensure the availability and integrity of the load balancer resources. By enabling deletion protection, accidental or unauthorized deletion of ALB resources is prevented, reducing the risk of downtime or misconfiguration that could lead to security vulnerabilities.

For organizations complying with the NIST Cybersecurity Framework (CSF) v1, enabling ALB deletion protection aligns with the framework's objective of protecting against unauthorized access or disruption to critical infrastructure.

Troubleshooting Steps:

There are no specific troubleshooting steps associated with enabling deletion protection for ALB in the context of NIST CSF v1 compliance.

Necessary Codes:

There are no specific codes required to enable deletion protection for ALB in the context of NIST CSF v1 compliance.

Step-by-Step Guide for Remediation:

1.
Sign in to the AWS Management Console.

2.
Go to the AWS EC2 Dashboard.

3.
In the navigation pane, click on "Load Balancers" under the "Load Balancing" section.

4.
Select the desired Application Load Balancer (ALB).

5.
Click on the "Attributes" tab.

6.
Locate the "Deletion protection" setting and ensure it is set to "Enabled".

7.
If it is not already enabled, click on the "Edit" button next to "Deletion protection".

8.
In the pop-up window, check the box next to "Enable deletion protection" and click "Save".

9.
Verify that the deletion protection is now enabled for the ALB by checking the status in the "Attributes" tab.

10.
Repeat the steps for any other ALBs in your account that need deletion protection enabled.

Note: Enabling deletion protection for an ALB ensures that it cannot be deleted through the AWS Management Console, API, or CLI. Make sure to carefully evaluate the impact and consider creating regular backups or additional safeguards before enabling deletion protection.

Rule: ELB Application Load Balancer Deletion Protection Enabled

.css-1ekaeh4{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:22px;font-weight:700;margin-top:1rem;margin-bottom:0rem;}Description:

.css-1ekaeh4{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:22px;font-weight:700;margin-top:1rem;margin-bottom:0rem;}Troubleshooting Steps:

.css-1ekaeh4{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:22px;font-weight:700;margin-top:1rem;margin-bottom:0rem;}Necessary Codes:

.css-1ekaeh4{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:22px;font-weight:700;margin-top:1rem;margin-bottom:0rem;}Step-by-Step Guide for Remediation:

Is your System Free of Underlying Vulnerabilities? Find Out Now

Description:

Troubleshooting Steps:

Necessary Codes:

Step-by-Step Guide for Remediation:

Is your System Free of Underlying Vulnerabilities?
Find Out Now