📄️ lacework-global-207
Virtual Cloud Network (VCN) has Internet Gateway attached (Automated)
📄️ lacework-global-208
User has API keys (Automated)
📄️ lacework-global-209
Block Volume is not attached (Automated)
📄️ lacework-global-210
Password policy does not meet complexity requirements (Automated)
📄️ lacework-global-211
Identity and Access Management (IAM) group has too few members (Automated)
📄️ lacework-global-212
Identity and Access Management (IAM) group has too many members (Manual)
📄️ lacework-global-213
Load balancer SSL certificate expiring soon (Automated)
📄️ lacework-global-214
Load balancer allows weak cipher suites (Automated)
📄️ lacework-global-400
Load balancer allows weak SSL communication (Automated)
📄️ lacework-global-661
Instance is running without required tags (Automated)
📄️ lacework-global-669
Give permissions on all resources only to the tenancy administrator group (Automated)
📄️ lacework-global-670
Ensure Identity and Access Management (IAM) administrators cannot update tenancy Administrators group (Automated)
📄️ lacework-global-674
Enable Multi-Factor Authentication (MFA) for all users with console password capability (Automated)
📄️ lacework-global-675
Ensure user API keys rotate every 90 days (Automated)
📄️ lacework-global-676
Ensure user customer secret keys rotate every 90 days (Automated)
📄️ lacework-global-677
Ensure user auth tokens rotate within 90 days (Automated)
📄️ lacework-global-686
Ensure the default security list of every Virtual Cloud Network (VCN) restricts all traffic except Internet Control Message Protocol (ICMP) (Automated)
📄️ lacework-global-707
Ensure no Object Storage buckets are publicly visible (Automated)
📄️ lacework-global-708
Encrypt Object Storage Buckets with a Customer Managed Key (CMK) (Automated)
📄️ lacework-global-710
Encrypt Block Volumes with Customer Managed Keys (CMK) (Automated)
📄️ lacework-global-717
Instance is running an Oracle public image (Manual)
📄️ lacework-global-718
Network Security Group ingress rule contains disallowed IP/port (Automated)
📄️ lacework-global-719
Network Security Group egress rule contains disallowed IP/port (Automated)
📄️ lacework-global-720
Load balancer has no inbound rules or listeners (Automated)
📄️ lacework-global-721
Load balancer has no backend set (Automated)
📄️ lacework-global-722
Password is too old (Automated)
📄️ lacework-global-724
Instance has a public IP address (Automated)
📄️ lacework-global-725
Instance is publicly accessible (Automated)