turbot/aws_compliance

Control: Ensure RDP is restricted to only IP address that should have this access

Description

Any ports enable within Lightsail by default are open and exposed to the world. For SSH and RDP access you should identify which IP address need access.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.lightsail_instance_rdp_restricted_ip

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.lightsail_instance_rdp_restricted_ip --share

SQL

This control uses a named query:

lightsail_instance_rdp_restricted_ip

Tags