Detections
Analytics

Ensure LDAPSSL' (TCP,636) is not exposed to more than 32 private hosts

LOW

Description

LDAPSSL' (TCP,636) is exposed to more than 32 private hosts. Exposed ports may allow attackers to access the application listening on that port.

Remediation

In AWS Console -

  1. Sign in the AWS Console and go to the Amazon VPC console.
  2. In the navigation pane, select Security Groups.
  3. For each security group, perform the following actions:
    a) Select the security group.
    b) Select the Inbound Rules.
    c) Identify the rules to be removed.
    d) Remove the required rules.
  4. Click Save.

Policy Details

Rule Reference ID: AC_AWS_0341
CSP: AWS
Remediation Available: Yes
Domain: Infrastructure Security
Resource: aws_security_group
Resource Category: Virtual Network
Resource Type: Security Group

Frameworks