Back to All Checks
Medium CloudFront

CloudFront distributions should use origin access control

NIST

Description

This control checks whether an Amazon CloudFront distribution with an Amazon S3 origin has origin access control (OAC) configured. The control fails if OAC isn't configured for the CloudFront distribution.

Remediation

To configure OAC for a CloudFront distribution with S3 origins, follow these steps:

Steps

  1. Open the Amazon CloudFront console.
  2. Select the distribution you want to modify.
  3. Go to the 'Origins and Origin Groups' tab.
  4. Select the origin and choose 'Edit'.
  5. In the 'Origin Access Control' section, select the appropriate OAC configuration.
  6. Save the changes.

Compliance

NIST
Start Your Free Security Check