More Info:

This rule checks if the AWS Client VPN authorization rules authorize connection access for all clients. Having authorization rules that allow access for all clients (AccessAll) can pose a security risk by potentially granting access to unauthorized users. The rule is marked as non-compliant if ‘AccessAll’ is present and set to true.

Risk Level

Medium

Address

Security

Compliance Standards

CBP

Triage and Remediation

Remediation

Using Console