ASSOCIATED DRATA CONTROL
This test is part of the Hardening Standards in Place control that ensures your company has implemented appropriate hardening standards to maintain security around newly deployed server instances.
โ
WHAT TO DO IF A TEST FAILS
If Drata finds that your company has servers that do not have appropriate security hardening standards in place the test will fail. With a failed test you will receive a list of server names that are missing either Virtual Private Cloud (VPC) or Security Group configuration.
To remediate a failed test, you will need to ensure that the server(s) listed are either added to a VPC or Security Group that allows access only to the ports necessary for the server and systems that require access.
HELPFUL RESOURCES