EFS access points should enforce a user identity

amazon-efs
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

This control verifies whether Amazon EFS access points are configured to enforce a specific user identity. The control is marked as non-compliant if a POSIX user identity is not defined during the creation of the EFS access point.

Amazon EFS access points are designed as application-specific entry points into an EFS file system, simplifying the management of application access to shared data. Access points can enforce a user identity, including the associated POSIX group memberships, for all file system requests made through them.

Remediation

For details on configuring a user identity for an Amazon EFS access point, refer to the Enforcing a user identity using an access point section in the Amazon Elastic File System User Guide.

PREVIEWING: brett.blue/embedded-collector-release