A VPC network access control list (ACL) is considered compliant if it is not empty.
Risk level
Default risk level: Medium.
You can change the risk level as needed.
Detection logic
A VPC ACL is considered compliant if it is not empty.
Rule details
Parameter | Description |
Rule name | VPC network ACL is not empty |
Rule identifier | |
Tag | VPC |
Automatic remediation | Not supported |
Rule trigger | Configuration changes |
Supported resource types | ACS::VPC::VPC |
Input parameters | None |
Remediation guide
For information about how to remediate a non-compliant resource, see Network ACLs.