Plugin Title CLB HTTPS Only
Category CLB
Description Ensures CLBs are configured to only accept connections on HTTPS ports
More Info For maximum security, CLBs can be configured to only accept HTTPS connections. Standard HTTP connections will be blocked. This should only be done if the client application is configured to query HTTPS directly and not rely on a redirect from HTTP.
AWS Link
Recommended Action Remove non-HTTPS listeners from the load balancer.

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now