Skip to main content

lacework-global-157

No Default VPC should be present in an AWS account

Description

By default, a Virtual Private Cloud (VPC) is created and associated with a new AWS account. You may want to create and use your own VPC that is customized to allow least privileges for your environment, instead of using the default VPC associated with the account. In addition, you may want to delete this default VPC to prevent usage of the default VPC, as services automatically select the Default VPC if present.

Remediation

To delete the default VPC associated with your account, follow these steps. Verify that the default VPC is not being used before deleting it.

  1. Log in to the AWS Management Console.

  2. Navigate to the VPC dashboard at https://console.aws.amazon.com/vpc/.

  3. In the left navigation panel, under Virtual Private Cloud, select Your VPCs.

  4. Click the gear icon to display the Preferences.

  5. Under Properties/Select visible attribute columns, toggle Default VPC to on (toggle to the right), and click Confirm.

  6. Browse the VPCs and select the Default VPC where Yes is listed in the Default VPC column.

  7. In the Actions drop-down, select Delete VPC.

  8. Repeat this procedure for all regions used by your organization. From the navigation bar, change the AWS region and repeat this procedure.