Skip to main content

lacework-global-129

CloudFront Viewer Protocol Policy should use https-only

Description

It is recommended to configure your AWS CloudFront content delivery network (CDN) distributions to use HTTPS for encrypting data while in transit between CloudFront and the viewer. When CloudFront CDN distributions are found that are not configured to encrypt data using HTTPS, violations are reported.

Remediation

Set the Distribution Viewer Protocol Policy to HTTPS Only.

  1. Log in to the AWS Management Console.

  2. Select Services.

  3. Select CloudFront.

  4. Select the Distribution to edit.

  5. Select the Behaviors tab.

  6. Select the Behavior to edit, and select Edit.

  7. Under Viewer protocol policy, select HTTPS only.

  8. Select Save changes.