Policy: AWS > CIS v6.0 > 6 - Networking > 6.01 - Elastic Compute Cloud (EC2) > 6.01.02 - Ensure CIFS access is restricted to trusted networks to prevent unauthorized access

Configures auditing against a CIS Benchmark item.

Level: 1

Common Internet File System (CIFS) is a network file-sharing protocol that allows systems to share files over a network. However, unrestricted CIFS access can expose your data to unauthorized users, leading to potential security risks. It is important to restrict CIFS access to only trusted networks and users to prevent unauthorized access and data breaches.

Targets

This policy targets the following resource types:

AWS > VPC > Security Group

Primary Policy

This policy is used with the following primary policy:

AWS > CIS v6.0 > 6 - Networking > 6.01 - Elastic Compute Cloud (EC2)

Controls

Setting this policy configures this control:

AWS > CIS v6.0 > 6 - Networking > 6.01 - Elastic Compute Cloud (EC2) > 6.01.02 - Ensure CIFS access is restricted to trusted networks to prevent unauthorized access

Policy Specification

Schema Type	`string`
Default	`Per AWS > CIS v6.0 > 6.1 - Elastic Compute Cloud (EC2)`
Valid Values [YAML]	`Per AWS > CIS v6.0 > 6.1 - Elastic Compute Cloud (EC2)` `Skip` `Check: Benchmark`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/cis#/control/categories/v070904

Policy Type URI

tmod:@turbot/aws-cisv6-0#/policy/types/r060102

GraphQL

query policyType(id: "tmod:@turbot/aws-cisv6-0#/policy/types/r060102") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-cisv6-0#/policy/types/r060102'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-cisv6-0#/policy/types/r060102'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-cisv6-0#/policy/types/r060102"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-cisv6-0#/policy/types/r060102"