Back to All Checks
Critical S3 Regional

S3 access points should have block public access settings enabled

NIST 800-53PCI DSS v4.0.1PCI DSS v1.4.4HIPAA

Description

Checks whether an Amazon S3 access point has block public access settings enabled. The control fails if block public access settings aren't enabled for the access point.

Remediation

Enable block public access at the access point level (and consider account and bucket levels as needed).

Steps

  1. Open the Amazon S3 console and navigate to Access points.
  2. Select the access point and edit Block public access settings.
  3. Enable all Block public access options and save.

Compliance

NIST 800-53PCI DSS v4.0.1PCI DSS v1.4.4HIPAA
Start Your Free Security Check