Checks whether the configuration read-only mode is enabled for each Server Load Balancer (SLB) instance.
After you modify the configurations of an SLB instance, high security risks may occur. Proceed with caution when you perform the operation.
Default risk level: low.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If the configuration read-only mode is enabled for each SLB instance, the evaluation result is compliant.
- If the configuration read-only mode is disabled for an SLB instance, the evaluation result is non-compliant. For more information about how to remediate a non-compliant configuration, see Non-compliance remediation.
|Supported resource type
Enable the configuration read-only mode for an SLB instance. Call the SetLoadBalancerModificationProtection operation to enable the configuration read-only mode for the SLB instance.