Ensure AWS EBS Volume has a corresponding AWS EBS Snapshot

HIGH

Description

AWS EBS Volume does not have a valid AWS EBS Snapshot. This may make backups/disaster recovery efforts challenging.

Remediation

In AWS Console -

  1. Sign in to AWS Console and open Amazon EC2 Console.
  2. Select Snapshots under Elastic Block Store in the navigation pane.
  3. Click Create Snapshot.
  4. For Select resource type, choose Volume and select the volume.
  5. Add a tag and a description to the volume.
  6. Click Create Snapshot.

In Terraform -

  1. For each aws_ebs_volume resource, ensure there is a corresponding aws_ebs_snapshot resource referencing the volume_id.

References:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSSnapshots.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ebs_volume
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ebs_snapshot

Policy Details

Rule Reference ID: AC_AWS_0081
CSP: AWS
Remediation Available: Yes
Resource: aws_ebs_volume
Resource Category: Storage

Frameworks