top of page
< Back

AWS Foundational Security Best Practice

APIGateway.4

API Gateway should be associated with a WAF Web ACL

Severity

Cloud Platforms

Resources

MEDIUM

AWS

Amazon API Gateway

This control checks to see if an API Gateway stage is using an AWS WAF Web ACL. This control fails if an AWS WAF Web ACL is not attached to a REST API Gateway stage.

bottom of page