top of page
< Back

AWS Foundational Security Best Practice

CloudFront.2

CloudFront distributions should have origin access identity enabled

Severity

Cloud Platforms

Resources

MEDIUM

AWS

Amazon CloudFront

This control checks whether an Amazon CloudFront distribution with an Amazon S3 origin type has Origin Access Identity (OAI) configured. The control fails if the CloudFront distribution that is backed by Amazon S3 does not have OAI configured.

bottom of page