featured image

Enabling root user multi-factor authentication is great security practice. Some companies go as far as enabling physical MFA and locking it down in vault somewhere. nOps provide easy overview which one of your projects don’t have root MFA enabled. You can also receive real-time notifications when root logs in the console with our without MFA.

Root-user MFA Rule

To enable the rule, simply go to the “Available nOps Rules” tab in nOps Rules and click on the “Users without MFA Check” rule.

Root-user MFA Summary

Once enabled, the rule will appear on the “Applied nOps Rules” tab with a count of all projects and their root login that violates the rule.

Root-user MFA Detail

Clicking on the rule in the “Applied nOps Rules” tab, you will be able to see, in detail, the projects and their associated root logins that do not have MFA enabled.

Root-user MFA Alerts

Once enabled, you can configure your nOps account to receive email, Slack, and/or Hipchat alerts, alerting you to when the root logins do not have MFA enabled.

featured image

nOps Rules – Unused Resources

Unused resources accumulate in AWS as your workflows change and evolve. We do not tend to think about tidying up loose ends every time a workflow change occurs. For example, when you stop an EC2 instance, your automation might not delete EBS volumes. These volumes pile up and continue to incur cost. ELB has a […]
Continue Reading
featured image

nOps Rules – Unrestricted SSH

Allowing SSH access to everyone is not a secure practice. Once you configure Unrestricted SSH Monitoring, any time someone opens port 22 to all, you’ll receive real-time notification. Unrestricted SSH Rule To enable the rule, simply go to the “Available nOps Rules” tab in nOps Rules and click on the “Unrestricted SSH” rule. Unrestricted SSH […]
Continue Reading
featured image

nOps Rules – Users without MFA

Multi-factor authentication is hard to enforce in AWS, yet is it recommended through AWS Security best practices to have it enabled for all users. nOps allows you receive real time alerts when any of your users login to AWS console without MFA across all your projects. Users Without MFA Rule To enable the rule, simply […]
Continue Reading