Checks whether the deletion protection feature is enabled for an Application Load Balancer (ALB) instance.
Scenarios
You can enable the deletion protection feature for an ALB instance to prevent accidental deletion and business interruption.
Risk level
Default risk level: high.
You can change the risk level as required when you apply this rule.
Compliance evaluation logic
- If the deletion protection feature is enabled for the ALB instance, the evaluation result is compliant.
- If the deletion protection feature is disabled for the ALB instance, the evaluation result is non-compliant. For more information about how to correct the non-compliant configuration, see Non-compliance remediation.
Rule details
| Item | Description |
|---|---|
| Rule name | slb-delete-protection-enabled |
| Rule ID | alb-delete-protection-enabled |
| Tag | LoadBalancer and ALB |
| Automatic remediation | Not supported |
| Trigger type | Configuration change |
| Supported resource type | ALB instance |
| Input parameter | None |
Non-compliance remediation
Enable the deletion protection feature for the ALB instance. For more information, see Manage ALB instances.