Prisma Cloud: How to remediate "AWS S3 Buckets Block public access setting disabled" policy from within AWS

Prisma Cloud: How to remediate "AWS S3 Buckets Block public access setting disabled" policy from within AWS

11242
Created On 10/27/21 02:59 AM - Last Modified 01/27/23 20:40 PM


Objective


To manually remediate alerts for 'AWS S3 Buckets Block public access setting disabled' from AWS using two approaches

Method 1: Remediate alert by disabling public access for individual buckets in AWS 
Method 2: Remediate alerts by disabling public access for all S3 buckets running in an AWS account

Environment


  • Prisma Cloud
  • AWS

Procedure


Method 1 
  1. Login to the AWS Console
  2. Navigate to the 'S3' service
  3. Click on the 'S3' resource reported in the alert
  4. Click on the 'Permissions'
  5. Under 'Block public access' click on 'Edit'
  6. Select 'Block all public access' checkbox
  7. Click on Save
  8. 'Confirm' the changes

Method 2
  1.  Login to the AWS Console
  2.  Navigate to the 'S3' service
  3.  Click on the 'Block Public Access settings for this account' on the left panel
  4.  Click on 'Edit'
  5.  Select 'Block all public access' checkbox
  6.  Click on Save

Additional Information


View our documentation here on managing Policies. 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004M7mCAE&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language