Back to All Checks
Medium ELB Regional

Classic Load Balancer listeners should be configured with HTTPS or TLS termination

NISTISO 27001HIPAA

Description

This check ensures that Classic Load Balancer listeners are configured with HTTPS or TLS termination to encrypt traffic between the clients and the load balancer, enhancing security.

Remediation

To configure Classic Load Balancer listeners with HTTPS or TLS termination, follow these steps:

Steps

  1. Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.
  2. On the navigation pane, under LOAD BALANCING, choose Load Balancers.
  3. Select the Classic Load Balancer from the list.
  4. Choose the Listeners tab.
  5. If there is no HTTPS or TLS listener, choose Add.
  6. For the Load Balancer Protocol, select HTTPS or SSL (for TLS).
  7. Specify the Load Balancer Port and Instance Port that will be used for SSL/TLS communication.
  8. Choose an SSL certificate from the Certificate list or upload a new one if necessary.
  9. (Optional) Set the SSL negotiation policy with the preferred ciphers and protocols.
  10. Choose Save.

Compliance

NISTISO 27001HIPAA
Start Your Free Security Check