/
AWS-RDS-RDS-Deletion-Protection-Enabled

AWS-RDS-RDS-Deletion-Protection-Enabled

Severity: Medium

Description: This control ensures the Deletion Protection feature is enabled for the RDS Instance to prevent accidental deletions. This provides protection for the instance from being accidentally deleted. In a production environment, the availability of the data is very crucial and preventing deletion of an instance ensures the data is available. This feature is present in for all RDS engines supported by AWS.

Remediation Steps:

Perform following to update RDS instance deletion protection :

  1. Login to the AWS Management Console at https://console.aws.amazon.com.

  2. Navigate to RDS console.

  3. In the navigation pane, Click on Databases.

  4. Click on the Database instance to be modified, click Modify.

  5. Under Deletion Protection, select enable deletion protection.

  6. Click on the Continue.

  7. Under Scheduling of modifications, select Apply Immediately.

  8. Click on Modify DB Instance.

Important:

  •  This ensures the availability of the data, which is a very crucial aspect in production environments

Reference :

Related content

AWS-RDS-RDS-Logging-Enabled
AWS-RDS-RDS-Logging-Enabled
More like this
AWS-S3-S3-Bucket-Encryption
AWS-S3-S3-Bucket-Encryption
Read with this
AWS-RDS-RDS-Encryption-Enabled
AWS-RDS-RDS-Encryption-Enabled
More like this
AWS-RDS-RDS-CMK-Encryption
AWS-RDS-RDS-CMK-Encryption
Read with this
AWS-ELBv2-ELBv2-Deletion-Protection
AWS-ELBv2-ELBv2-Deletion-Protection
More like this
OCI-Database-Database-Policy-Protection
OCI-Database-Database-Policy-Protection
More like this

Blue Hexagon Proprietary