Rule: RDS DB Instances Should Prohibit Public Access

This rule ensures that RDS DB instances do not have public access enabled to enhance security measures.

Rule	RDS DB instances should prohibit public access
Framework	RBI Cyber Security Framework
Severity	✔ High

Rule Description:

According to the RBI (Reserve Bank of India) Cyber Security Framework, RDS (Relational Database Service) DB instances should prohibit public access. This measure enhances the security of the database by preventing unauthorized access from the internet.

Rule Implementation Steps:

1.
Log in to the AWS Management Console.

2.
Navigate to the Amazon RDS service.

3.
Select the desired RDS DB instance that needs to be updated.

4.
Click on the "Modify" button to modify the instance settings.

5.
In the "Network & Security" section, locate the "Public accessibility" option.

6.
Set the "Public accessibility" option to "No" to prohibit public access.

7.
Scroll down and review the other settings if any changes need to be made.

8.
Click on the "Continue" button to proceed.

9.
Review the summary of the changes and ensure that the desired modifications are in place.

10.
Click on the "Modify DB instance" button to apply the changes.

11.
Wait for the modification process to complete. This may take a few minutes.

12.
Once the modification is successful, the RDS DB instance will no longer be publicly accessible.

Troubleshooting Steps:

If you encounter any issues while trying to modify the RDS DB instance to prohibit public access, follow these troubleshooting steps:

1.
Issue: Unable to modify the instance settings.
- Solution: Ensure that you have the necessary permissions to modify the RDS DB instance. Contact your AWS account administrator if needed.

2.
Issue: Modification process fails.
- Solution: Check if there are any alerts or warnings related to the modification process. Address the highlighted issues and retry the modification.

3.
Issue: RDS DB instance remains publicly accessible after modification.
- Solution: Verify the modification settings and ensure that the "Public accessibility" option is set to "No". If the issue persists, contact AWS support for further assistance.

Code:

There is no specific code required for this rule. The modification can be accomplished through the AWS Management Console as described in the implementation steps above.

It's essential to keep the RDS DB instances secure and comply with regulatory frameworks like the RBI Cyber Security Framework. By following these steps, you can ensure that public access is prohibited, reducing the potential risk of unauthorized access to your RDS data.

Rule: RDS DB Instances Should Prohibit Public Access

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Rule Description:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Rule Implementation Steps:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Troubleshooting Steps:

.css-doq6ia{margin:0;font-family:Inter;font-weight:400;font-size:1.2857142857142858rem;line-height:1.5;color:#161857;text-align:left;font-size:26px;font-weight:700;margin-top:1rem;}Code:

Is your System Free of Underlying Vulnerabilities? Find Out Now

Rule Description:

Rule Implementation Steps:

Troubleshooting Steps:

Code:

Is your System Free of Underlying Vulnerabilities?
Find Out Now