Drata

This test is part of the <b>Hardening Standards in Place </b>control that ensures your company has implemented appropriate hardening standards to maintain security around newly deployed server instances.

If Drata finds that your company has servers that do not have appropriate security hardening standards in place the test will fail. With a failed test you will receive a list of server names that are missing either Virtual Private Cloud (VPC) or Security Group configuration.

To remediate a failed test, you will need to ensure that the server(s) listed are either added to a VPC or Security Group that allows access only to the ports necessary for the server and systems that require access.

<a href="https://www.cloudflare.com/learning/cloud/what-is-a-virtual-private-cloud/" rel="nofollow noopener noreferrer" target="_blank">What is a Virtual Private Cloud (VPC)?</a>

<a href="https://aws.amazon.com/vpc/?vpc-blogs.sort-by=item.additionalFields.createdDate&amp;vpc-blogs.sort-order=desc" rel="nofollow noopener noreferrer" target="_blank">VPCs within AWS</a>

<a href="https://azure.microsoft.com/en-us/services/virtual-network/" rel="nofollow noopener noreferrer" target="_blank">VPCs within Azure</a>

<a href="https://cloud.google.com/vpc" rel="nofollow noopener noreferrer" target="_blank">VPCs within Google</a>

- <a href="https://www.cloudflare.com/learning/cloud/what-is-a-virtual-private-cloud/" rel="nofollow noopener noreferrer" target="_blank">What is a Virtual Private Cloud (VPC)?</a>
- <a href="https://aws.amazon.com/vpc/?vpc-blogs.sort-by=item.additionalFields.createdDate&amp;vpc-blogs.sort-order=desc" rel="nofollow noopener noreferrer" target="_blank">VPCs within AWS</a>
- <a href="https://azure.microsoft.com/en-us/services/virtual-network/" rel="nofollow noopener noreferrer" target="_blank">VPCs within Azure</a>
- <a href="https://cloud.google.com/vpc" rel="nofollow noopener noreferrer" target="_blank">VPCs within Google</a>

Drata inspects the server instances to ensure they are part of a VPC with proper security groups used to lock access at the network level.