Ensure running mode is set to AutoStop for AWS Workspaces

MEDIUM

Description

AWS Workspace can be configured to AutoStop, which will stop and save apps and data after a period of disconnection. This can help save on cost and help decrease the number of running services that need to be maintained and monitored at a given time. For more information on WorkSpaces running mode, see the AWS documentation.
References:
https://docs.aws.amazon.com/workspaces/latest/adminguide/running-mode.html

Remediation

In AWS Console -

Sign in to the AWS Console and go to the WorkSpaces console.
Select Actions, Modify Running Mode Properties.
Set the AutoStop Time (hours).

In Terraform -

In the aws_workspaces_workspace resource, set the 'running_mode' field to 'AUTO_STOP'.

References:
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/workspaces_workspace

Policy Details

Rule Reference ID: AC_AWS_0373

CSP: AWS

Remediation Available: Yes

Domain: Compliance Validation

Resource: aws_workspaces_workspace

Resource Category: Compute

Resource Type: WorkSpaces

Frameworks

GDPR
NIST-800-171
NIST-800-53
NIST-CSF
HIPAA