top of page
AWS Foundational Security Best Practice
CloudFront.2
CloudFront distributions should have origin access identity enabled
Severity
Cloud Platforms
Resources
MEDIUM
AWS
Amazon CloudFront
This control checks whether an Amazon CloudFront distribution with an Amazon S3 origin type has Origin Access Identity (OAI) configured. The control fails if the CloudFront distribution that is backed by Amazon S3 does not have OAI configured.
bottom of page