AWS EC2 Transit Gateways should not automatically accept VPC attachment requests

ec2
이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

This check verifies whether EC2 transit gateways are set to automatically accept shared VPC attachments. The check will not pass if a transit gateway is configured to automatically accept attachment requests for shared VPCs.

Enabling the AutoAcceptSharedAttachments setting allows a transit gateway to automatically accept VPC attachment requests from other accounts without verification. To adhere to best practices for authorization and authentication, it is advised to disable this feature so that only authorized attachment requests are accepted.

Remediation

For instructions on how to make changes to a transit gateway, refer to the Modify a transit gateway section in the Amazon VPC Developer Guide.