Detections
Analytics

Ensure HTTP2 is enabled for AWS LB (Load Balancer)

LOW

Description

AWS application load balancer has HTTP2 disabled. This may lead to slow rendering and page loading with high latency.

Remediation

In AWS Console -

  1. Sign in to the AWS Console and open the Load Balancer Console.
  2. Choose the load balancer to edit and in the Actions drop down select Edit load balancer attributes.
  3. Under Attributes, set HTTP/2 to enabled.
  4. Select Save changes.

In Terraform -

  1. In the aws_lb resource, set the enable_http2 field to true.

References:
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/lb

Policy Details

Rule Reference ID: AC_AWS_0441
CSP: AWS
Remediation Available: Yes
Domain: Infrastructure Security
Resource: aws_lb
Resource Category: Virtual Network
Resource Type: Load Balancer

Frameworks