OCI Block Storage Block Volume does not have backup enabled
Description
This policy identifies the OCI Block Storage Volumes that are do not have backup enabled. It is recommended to have block volume backup policies on each block volume that the block volume can be restored during data loss events.
Code Example
go
resource "oci_core_volume" "example" {
...
+ backup_policy_id = data.oci_core_volume_backup_policies.test_volume_backup_policies
....
}Remediation
- OCI Console*
. Login to the OCI Console
. Type the resource reported in the alert into the Search box at the top of the Console.
. Click the resource reported in the alert from the Resources submenu
. Click on Edit button
. Select the Backup Policy from the Backup Policies section as appropriate
. Click Save Changes === Fix - Buildtime
Terraform
- Resource: oci_core_volum
- Arguments: backup_policy_id
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1229 |
| Severity | LOW |
| IaC Type | Terraform |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV_OCI_2 |