Back to All Checks
Medium WAF

AWS WAF Classic global rules should have at least one condition

NISTISO 27001

Description

This control checks whether an AWS WAF global rule contains any conditions. The control fails if no conditions are present within a rule.

Remediation

To add conditions to an empty AWS WAF global rule, refer to the AWS WAF Developer Guide.

Steps

  1. Navigate to the AWS WAF console.
  2. Select the appropriate Rule.
  3. Add at least one condition to the Rule.

Compliance

NISTISO 27001
Start Your Free Security Check