Back to All Checks
Medium ELB Regional

Application Load Balancer and Network Load Balancer listeners should use secure protocols to encrypt data in transit

FSBP

Description

This control checks whether the listener for an Application Load Balancer or Network Load Balancer is configured to use a secure protocol for encryption of data in transit. The control fails if an Application Load Balancer listener isn't configured to use the HTTPS protocol or a Network Load Balancer listener isn't configured to use the TLS protocol.

Remediation

To configure secure protocols for your load balancer listeners, you need to update the listener protocol settings.

Steps

  1. Navigate to the Amazon EC2 console
  2. Go to 'Load Balancers' and select your load balancer
  3. Select the listener you want to configure
  4. Choose 'Edit' and go to 'Protocol' settings
  5. For Application Load Balancer: Change protocol to 'HTTPS'
  6. For Network Load Balancer: Change protocol to 'TLS'
  7. Configure SSL/TLS certificate if needed
  8. Save the changes to apply the secure protocol

Compliance

FSBP
Start Your Free Security Check