Policy: AWS > CIS v4.0 > 5 - Networking > 5.01 - Elastic Compute Cloud (EC2) > 5.01.02 - Ensure CIFS access is restricted to trusted networks to prevent unauthorized access

Configure auditing against a CIS Benchmark item.

Level: 1

Common Internet File System (CIFS) is a network file-sharing protocol that allows systems to share files over a network. However, unrestricted CIFS access can expose your data to unauthorized users, leading to potential security risks. It is important to restrict CIFS access to only trusted networks and users to prevent unauthorized access and data breaches.

Primary Policy

This policy is used with the following primary policy:

AWS > CIS v4.0 > 5 - Networking > 5.01 - Elastic Compute Cloud (EC2)

Controls

Setting this policy configures this control:

AWS > CIS v4.0 > 5 - Networking > 5.01 - Elastic Compute Cloud (EC2) > 5.01.02 - Ensure CIFS access is restricted to trusted networks to prevent unauthorized access

Policy Specification

Schema Type	`string`
Default	`Per AWS > CIS v4.0 > 5 - Networking > 5.1 - EC2`
Valid Values [YAML]	`Per AWS > CIS v4.0 > 5 - Networking > 5.1 - EC2` `Skip` `Check: All CIS Benchmarks except attestations` `Check: All CIS Benchmarks`
Examples [YAML]	`Skip`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/cis#/control/categories/cis

Policy Type URI

tmod:@turbot/aws-cisv4-0#/policy/types/r050102

GraphQL

query policyType(id: "tmod:@turbot/aws-cisv4-0#/policy/types/r050102") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-cisv4-0#/policy/types/r050102'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-cisv4-0#/policy/types/r050102'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-cisv4-0#/policy/types/r050102"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-cisv4-0#/policy/types/r050102"