ACM certificate expiry #524

cristiandley · 2022-11-14T16:44:52Z

Describe the bug

acm_certificate_expires_30_days returns over >30 days certificates as an alarm.

Description in detail

AWS docs => ACM expiracy:

https://docs.aws.amazon.com/config/latest/developerguide/acm-certificate-expiration-check.html

The rule is NON_COMPLIANT if your certificates are about to expire.

MOD docs => acm_certificate_expires_30_days:

https://github.com/turbot/steampipe-mod-aws-compliance/blob/main/foundational_security/docs/foundational_security_acm_1.md

This control checks whether ACM certificates in your account are marked for expiration within 30 days

SOC2 specification => soc_2_cc_6_7:

CC6.7 The entity restricts the transmission, movement, and removal of information to authorized internal and external users and processes, and protects it during transmission, movement, or removal to meet the entity's objectives

https://docs.aws.amazon.com/config/latest/developerguide/acm-certificate-expiration-check.html

Steampipe version (steampipe -v)

latest

Plugin version (steampipe plugin list)
latest

To reproduce
run SOC2 test

Expected behavior
to pass controls >30 days

The text was updated successfully, but these errors were encountered:

cristiandley added the bug Something isn't working label Nov 14, 2022

cbruno10 assigned khushboo9024 Nov 14, 2022

khushboo9024 pushed a commit that referenced this issue Nov 16, 2022

ACM certificate expiry Closes #524

082e038

misraved closed this as completed in dd9221c Nov 17, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ACM certificate expiry #524

ACM certificate expiry #524

cristiandley commented Nov 14, 2022 •

edited

Loading

ACM certificate expiry #524

ACM certificate expiry #524

Comments

cristiandley commented Nov 14, 2022 • edited Loading

cristiandley commented Nov 14, 2022 •

edited

Loading