Ensure every access control groups rule has a description
Description
This policy checks whether every access control group rule in Naver Cloud Platform has a description. Descriptions are essential for understanding the purpose and functionality of access control rules, which is crucial for network security and compliance. Without descriptions, it can be challenging to manage and audit access control rules, potentially leading to security breaches or misconfigurations. By ensuring that all access control group rules have descriptions, organizations can improve the overall security and maintainability of their network infrastructure.
Code Example
terraform
resource "ncloud_access_control_group_rule" "example" {
access_control_group_no = ncloud_access_control_group.example.id
protocol = "TCP"
ip_block = ["0.0.0.0/0"]
port = "80"
description = "Allow incoming HTTP traffic"
}Remediation
Add a description to the access control group rule.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1205 |
| Severity | MEDIUM |
| IaC Type | Terraform |
| Frameworks | ncloud_access_control_group, ncloud_access_control_group_rule |
| Checkov ID | CKV_NCP_2 |