AWS_ELB_68

Enable ALB Elastic Load Balancer v2 (ELBv2) access log

Description

ELBv2 ALBs should have have access log enabled to capture detailed information about requests sent to your load balancer. Each log contains information such as the time the request was received, the client’s IP address, latencies, request paths, and server responses. You can use these access logs to analyze traffic patterns and troubleshoot issues.

Remediation

1. Sign into the AWS console

2. In the console, select the specific region

3. Navigate to EC2 dashboard

4. Click ‘Load Balancers’ (Left Panel).

5. Select the reported ELB

6. Click ‘Actions’ drop-down

7. Click ‘Edit attributes’

8. In the ‘Edit load balancer attributes’ popup box, select ‘Enable’ for ‘Access logs’ and configure S3 location where you want to store ELB logs

Service

ELB

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!