Drata

This test is part of the <b>Require Encryption of Web-Based Admin Access </b>control that ensures your company uses encryption to protect user authentication and admin sessions of the internal admin tool transmitted over the Internet.

If Drata finds that your company infrastructure admin console has an issue with its SSL/TLS configuration it may be that a certificate has either expired or is not from a valid authority the test will fail. The test may also fail in the case where the URL domain does not match the certificate domain.

To remediate a failed test, you will need to work with your infrastructure provider to ensure that the SSL/TLS configuration of your admin console has a valid certificate for the appropriate domain.

Drata performs the following URL checks when testing to validate a successful SSL/TLS connection:

AWS - <a href="https://aws.amazon.com" rel="nofollow noopener noreferrer" target="_blank">https://aws.amazon.com</a>

Azure - <a href="https://portal.azure.com" rel="nofollow noopener noreferrer" target="_blank">https://portal.azure.com</a> 

Google Cloud Platform - <a href="https://console.cloud.google.com" rel="nofollow noopener noreferrer" target="_blank">https://console.cloud.google.com</a>

- AWS - <a href="https://aws.amazon.com" rel="nofollow noopener noreferrer" target="_blank">https://aws.amazon.com</a>
- Azure - <a href="https://portal.azure.com" rel="nofollow noopener noreferrer" target="_blank">https://portal.azure.com</a> 
- Google Cloud Platform - <a href="https://console.cloud.google.com" rel="nofollow noopener noreferrer" target="_blank">https://console.cloud.google.com</a>

To successfully validate when using Cloudflare, please ensure the following have been connected to Drata by an Admin:

- <a href="https://www.ssl.com/faqs/faq-what-is-ssl/" rel="nofollow noopener noreferrer" target="_blank">What is SSL/TLS?</a>

Drata inspects an HTTPS request to your company infrastructure admin console to determine the presence and status of an SSL certificate.