Amazon WAF policy Firewall Manager findings
This page explains Firewall Manager findings for Amazon WAF policies.
You can use Firewall Manager Amazon WAF policies to apply Amazon WAF rule groups to your resources in Amazon Organizations. For more information, see Using Amazon Firewall Manager policies.
Resource is missing Firewall Manager managed web ACL.
An Amazon resource doesn't have the Amazon Firewall Manager managed web ACL association in accordance with the Firewall Manager policy. You can enable Firewall Manager remediation on the policy to correct this.
Severity – 80
-
Status settings – PASSED/FAILED
Updates – If Firewall Manager performs the remediation action, it will update the finding and the severity will lower from
HIGH
toINFORMATIONAL
. If you perform the remediation, Firewall Manager will not update the finding.
Firewall Manager managed web ACL has misconfigured rule groups.
This is a Amazon WAF Classic policy finding. The rule groups in a web ACL that's managed by Firewall Manager are not configured correctly, according to the Firewall Manager policy. This means that the web ACL is missing the rule groups that the policy requires. You can enable Firewall Manager remediation on the policy to correct this.
Severity – 80
-
Status settings – PASSED/FAILED
Updates – If Firewall Manager performs the remediation action, it will update the finding and the severity will lower from
HIGH
toINFORMATIONAL
. If you perform the remediation, Firewall Manager will not update the finding.