💼 [RDS.16] Aurora DB clusters should be configured to copy tags to DB snapshots

ID: /frameworks/aws-fsbp-v1.0.0/rds/16

Description

Identification and inventory of your IT assets is a crucial aspect of governance and security. You need to have visibility of all your Amazon Aurora DB clusters so that you can assess their security posture and take action on potential areas of weakness. Aurora DB snapshots should have the same tags as their parent DB clusters. In Amazon Aurora, you can configure a DB cluster to automatically copy all the tags for the cluster to snapshots of the cluster. Enabling this setting ensures that DB snapshots inherit the same tags as their parent DB clusters.

Similar

AWS Security Hub
- https://docs.aws.amazon.com/securityhub/latest/userguide/rds-controls.html#rds-16
Internal
- ID: dec-c-f51747d8

Similar Sections (Give Policies To)

Section	Sub Sections	Policies	Compliance
💼 NIST SP 800-53 Revision 5 → 💼 CA-9(1) Internal System Connections _ Compliance Checks		54	no data
💼 NIST SP 800-53 Revision 5 → 💼 CM-2 Baseline Configuration	7	46	no data
💼 NIST SP 800-53 Revision 5 → 💼 CM-2(2) Baseline Configuration _ Automation Support for Accuracy and Currency		22	no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS RDS Cluster is not configured to copy all tags to snapshots🟢	1	🟢 x6	no data

Description​

Similar​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​

Description

Similar

Similar Sections (Give Policies To)

Sub Sections

Policies (1)