[EFS.2]
Amazon EFS volumes should be in backup plans
Description
Amazon EFS file systems should be added to AWS backup plans. You can prevent loss of data in case of an accidental deletion by including EFS to backup plans. To make this rule COMPLIANT, you must include file systems in AWS Backup plans.
Details
| Property | Value |
|---|---|
| Category | Recover > Resilience > Backup |
| Compliance Control ID | EFS.2 |
| FortifyFox ID | FF100027 |
| Link | EFS.2 Compliance |
| Resource Type(s) | AWS::EFS::FileSystem |
| Severity | Medium |
Remediation
Use the following CloudFormation templates to deploy an AWS EFS with backups enabled compliant with EFS.2
YAML Template
Resources:
efs:
Type: AWS::EFS::FileSystem
Properties:
BackupPolicy:
Status: ENABLED
JSON Template
{
"Resources": {
"efs": {
"Type": "AWS::EFS::FileSystem",
"Properties": {
"BackupPolicy": {
"Status": "ENABLED"
}
}
}
}
}