top of page

WAF.1

AWS WAF Classic Global Web ACL logging should be enabled

Severity

Cloud Platforms

Resources

Related Standards

Automated

MEDIUM

AWS

Amazon Web Application Firewall

AWS Foundational Best Practice, CIS v8, CDR, SOC2, NIST CSF, NIST.800-53.r5,

This control checks whether logging is enabled for a WAF global Web ACL. This control fails if logging is not enabled for the Web ACL.

bottom of page