A VPN Gateway instance is considered compliant if its expiration date is more than a specified number of days from the current date. The default value is 30 days.
Risk level
Default risk level: High.
You can change the risk level as needed.
Detection logic
A VPN Gateway instance is considered compliant if its expiration date is more than a specified number of days from the current date. The default value is 30 days.
Rule details
Parameter | Description |
Rule name | VPN instance expiration check |
Rule identifier | |
Tag | VPN,ResourceExpired |
Automatic remediation | Supported |
Rule trigger | Configuration change |
Supported resource types | ACS::VPN::VpnGateway |
Input parameters | days (Default value: 30) |
Remediation
To remediate resources that are non-compliant with this rule, see Upgrade, downgrade, and renew VPN Gateway instances.